Seonix SEO

Changelog

2.5.14

• Fixed the Seonix icon in the WordPress admin menu rendering as a solid white square. The menu now uses the real Seonix favicon, embedded in a form that WordPress core’s icon repainting (svg-painter.js) cannot flatten, so the brand mark shows correctly in every menu state.

2.5.0

• One-click connect. A new top-level Seonix admin menu links your WordPress site to Seonix in a single click — it hands off to https://app.seonix.ai/connect, you pick a project, and the connection completes automatically. No API key to copy. The manual key flow still works from Seonix → Settings. The browser handoff carries a single one-time security code in the URL fragment so it never reaches server logs.
• Site Health inside WordPress. The Seonix Dashboard shows your SEO audit as a task list — overall score, open/solved counts, per-category gauges (SEO / Technical / AI Search), and each issue’s recommendation and affected URL. Tasks are stored locally and rendered from there, so viewing the Dashboard never calls the Seonix API; a “Refresh tasks” button (and a soft once-a-day auto-refresh) pulls the latest on demand.
• Structured data (JSON-LD) on published articles. Seonix adds schema.org markup (Article, breadcrumbs, and FAQ/How-To when present) in the page so search engines and AI answer engines understand your content. Stays out of the way when Yoast, Rank Math, or All in One SEO is active to avoid duplicate markup. Toggle under Seonix → Settings → Structured Data.
• Redesigned admin UI. Full-width Problems and Settings tabs matching the Seonix web app, with a Site Health panel (overall score ring plus per-category bars) and a clearer, filterable task list.
• New REST routes POST /connect/exchange and POST /tasks under both the seonix/v1 and legacy content-engine/v1 namespaces. All output is escaped, all input is sanitized, and every state-changing admin action stays capability- and nonce-checked.
• Security hardening and reliability fixes. Uninstall cleans up the new options and the local tasks table. Existing connected sites keep working unchanged — no reconfiguration needed.

2.4.2

• Yoast SEO integration tightened: removed the last direct reads from Yoast-owned option arrays. Term meta descriptions (Seonix_Fix_Term_Meta_Description::engine_read) and the Yoast title-template helper (Seonix_REST_API::get_yoast_title_template) now go strictly through Yoast’s public class APIs (WPSEO_Taxonomy_Meta::get_term_meta, WPSEO_Options::get). If those classes are unreachable, we fail cleanly (empty string / null / 412 Precondition Failed) instead of falling back to get_option('wpseo_*') against the underlying option array.
• No new code paths and no migrations — the change only narrows the previously documented fallback.

2.4.1

• WordPress.org review compliance pass. No behaviour change; existing connected sites continue to work without reconfiguration.
• Removed the deprecated libxml_disable_entity_loader() calls from the HTML-to-blocks helper. The remaining LIBXML_NONET flag plus libxml2 2.9+ defaults provide the same XXE protection on the WP-supported PHP range (7.4+).
• llms.txt and llms-full.txt are now served entirely from PHP via rewrite rules — the plugin no longer writes any static files to the WordPress root. ETag/Last-Modified/304 caching keeps the responses cheap, and the dynamic body is always in sync with current published content. Output is escaped on emit.
• The IndexNow key file moved from the WordPress root to wp-content/uploads/seonix/{key}.txt and is written via the WordPress Filesystem API (WP_Filesystem). The file_url returned by the setup endpoint points at the new location and is accepted by IndexNow’s keyLocation parameter.
• Yoast SEO integration now goes through Yoast’s public API only — WPSEO_Options::get / WPSEO_Options::set for the pagination noindex-subpages-wpseo flag, and WPSEO_Taxonomy_Meta::set_value for taxonomy term descriptions. No direct update_option( 'wpseo_*', ... ) calls remain anywhere in the plugin; both fix methods refuse to run unless Yoast SEO is active.
• Renamed assets/icon-256x256.png → assets/seonix-logo.png and assets/icon-64x64.png → assets/seonix-logo-small.png so they don’t clash with WordPress.org plugin-directory catalog asset names. The directory banners/icons live in SVN /assets/, not in the plugin zip.

2.4.0

• Rebrand release. Plugin name updated to “Seonix SEO – Real-time AI Agent for Technical SEO, AI Content & Autonomous Growth” so the WordPress.org listing reflects what the plugin and connected Seonix service actually do: real-time technical SEO audits, AI-generated content, one-click fixes, and autonomous publishing for Google and AI search engines (ChatGPT, Gemini, Perplexity).
• readme.txt: rewritten short description and Description body with a full overview of Seonix capabilities (real-time technical SEO audits, AI content, autonomous publishing, AI-search visibility). Plugin tags updated for the SEO category in the WordPress.org directory.
• No code or behaviour change. The plugin REST API surface, auth flow, sync contract, and SEO Fix subsystem are identical to 2.3.2 — safe to update.

2.3.2

• Corrected the Terms of Service and Privacy Policy URLs in the External Service disclosure (https://seonix.ai/terms-of-use and https://seonix.ai/privacy-policy). The previous /terms and /privacy paths returned 404.

2.3.1

• Self-configure on verify: when the Seonix backend calls GET /wp-json/seonix/v1/verify, the plugin now persists engine_url, project_id, and project_name from the request’s query string. Outbound sync (/api/plugin/sync, /api/plugin/content-event) and the Settings → Seonix UI always reflect the backend that completed the last successful verify — operators no longer need to edit options by hand when a site is moved between Seonix projects or between dev/prod backends. Older backends that don’t pass the new params are still accepted (empty values are skipped).
• Internal: Seonix_Sync::is_safe_url is now public static so the REST controller reuses the same SSRF guard that protects outbound sync.
• Plugin Check compliance: the uninstall-time DROP TABLE now passes the table name through $wpdb->prepare( '...%i', $table ) so PluginCheck’s UnescapedDBParameter sniff is satisfied. Tested up to WordPress 7.0; minimum bumped to WordPress 6.2 (required for the %i SQL identifier placeholder).

2.3.0

• WordPress.org submission prep: complete plugin header with Plugin URI, Author URI, License URI, and Domain Path; readme.txt fully discloses the external service (Seonix SaaS), the exact data sent, and links to Terms of Service and Privacy Policy.
• i18n: empty /languages/seonix.pot scaffold shipped for translators; translations for WordPress.org-hosted plugins are auto-loaded by core since WP 4.6, so no explicit load_plugin_textdomain() call is needed.
• Hardened uninstall: legacy @unlink() replaced with WordPress’s wp_delete_file(); seonix_migrated_from_ce option and {$wpdb->prefix}seonix_seo_fix_history table are now dropped on uninstall.
• Internal: enqueue handles renamed from legacy ce-admin to seonix-admin for consistency. No behaviour change.
• Tested up to WordPress 6.8 (bumped to 7.0 in 2.3.1).

2.2.6

• Security audit fixes (internal hardening; no API or behaviour change for callers).

2.2.5

• Fixed: featured_image_alt from Seonix now persists as the WordPress alt-text attribute on the imported featured-image attachment (_wp_attachment_image_alt post meta). Previously the field was silently dropped.
• Performance: trimmed REST responses across every endpoint to ship only fields the Seonix backend actually decodes. Largest wins: GET /posts list no longer does per-row get_the_terms() lookups or a global wp_count_posts(); /llms-status no longer walks wp_count_posts() x 2; /cache/purge returns 204 No Content; /seo-fix/dry-run skips sprintf of the now-unused diff string per fix method.

2.2.4

• New pagination_noindex fix method. Flips the SEO plugin’s site-wide noindex-subpages-wpseo option to true (so paginated archive subpages render <meta name="robots" content="noindex, follow">) and force-rebuilds term indexables by nulling is_robots_noindex on term rows in the indexables table. Without this, the live /category/foo/page/2/ HTML keeps rendering index, follow until the SEO plugin’s cron rebuild catches up. All other wpseo_titles keys are preserved unchanged.

2.2.3

• Fixed: term_meta_description now syncs to the indexables table so the live archive page actually renders the new description on installs that use indexables (v14+).

2.2.2

• New SEO fix method term_meta_description for taxonomy archive pages (category / tag / custom taxonomies). The plugin resolves the archive URL to a term and writes the description through the active SEO plugin’s term-meta layer. Fixes the gap where meta_description_missing issues on /category/... and /tag/... URLs survived auto-fix runs because the legacy meta_description method only handled posts.
• Broken-link fix gained an optional mode parameter. Default mode=rewrite is unchanged. New mode=remove_link strips every <a href="$old_url">TEXT</a> (absolute and matching relative href) down to its inner TEXT — used as the fallback when the AI matcher can’t find a confident redirect target. Deep-mode rewrites apply to the new mode too.
• Backwards-compatible with older Seonix backends: they simply won’t dispatch to the new method/mode.

2.2.1

• Per-post snapshot (GET /seonix/v1/posts and /seonix/v1/posts/{id}) now includes the active SEO plugin’s per-post-type title template (e.g. %%title%% %%sep%% %%sitename%%) and the site blogname. The Seonix backend uses these to size the AI title-suggester’s character budget so a meta title plus the appended sitename suffix stays under the rendered <title> length limit. Returns null when no compatible SEO plugin is installed.

2.2.0

• Key takeaways callout block. The plugin now accepts key_takeaways[] and key_takeaways_title in the publish payload and renders them as a styled <aside class="seonix-key-takeaways"> block above the article body. Bundled stylesheet (assets/seonix-content.css) is enqueued on singular post pages so the block looks consistent across themes.
• Per-tenant brand accent. The payload also accepts accent_color (canonical 7-character hex). Set as --seonix-accent on the <aside> so the callout matches the project palette out of the box. Themes can override --seonix-accent globally at :root if they prefer their own colour.
• Takeaways and brand accent are persisted in _seonix_key_takeaways / _seonix_key_takeaways_title / _seonix_brand_accent post meta for downstream consumers (themes, AMP, llms.txt).

2.1.0

• SEO Fix subsystem: REST routes under /seonix/v1/seo-fix/* (capabilities, dry-run, apply, rollback, history) backed by per-method classes (SSL mixed content, redirect, broken link, meta title, meta description, image alt).
• Cache purger so applied fixes invalidate page cache without manual clears.
• llms.txt full-content variant alongside the index, with ETag and Last-Modified for efficient AI-crawler revalidation.
• Hardened auth header detection: X-Seonix-Key preferred, X-CE-Key kept as legacy alias, Authorization: Bearer continues to work.
• PHPUnit unit tests for sync, REST controller, registry, history, cache purger, and individual fix methods.
• Internal cleanups across the sync class and admin page; no behaviour changes there.

2.0.0

• Complete rewrite with API key authentication (replaces handshake flow). New keys are sx_<64 hex>; legacy ce_<64 hex> keys remain accepted.
• Multi-file architecture for better maintainability.
• SEO meta set via meta_input during wp_insert_post so the active SEO plugin picks up the values immediately without an extra save.
• Added support for an additional SEO plugin alongside the two already covered.
• Multi-category support with automatic creation.
• Robust MIME type detection for featured images.
• Configurable post author setting.
• IndexNow setup and status endpoints.
• Improved admin settings page with card-based design.

1.0.0

• Initial release.