wpscan
Python parser for WPScan output files (JSON and CLI). It analyze vulnerabilities, miscellaneous alerts and warnings and other findings.
Defensive WordPress security scanner — 189 checks, 8-source nightly CVE aggregator, SLSA L3 + Sigstore-signed releases, 10-provider threat-intel federation, continuous monitoring, active exploit verification (consent-gated), enterprise SSO/RBAC/audit/multi-tenant, distribution to Docker/K8s/Homebrew/Snap/winget/AUR. AGPLv3.
Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found.