Skip to content
Aetos SEO
Arabic

Changelog

Six months. 45 releases. Every fix, every feature, no marketing language.

First commit: Nov 2025 First public: Jan 2026 Commercial: Apr 2026 Current: v4.0.8

Why so many May patches?

Between May 3 and 8, 2026, we ran four independent AI security audits in parallel (Claude, Gemini, DeepSeek, ChatGPT). Each finding closed = a new release. We chose to publish every fix rather than bundle them into a single "looks-stable" v3.2 — that's why you see five patch releases in eight days. Transparency over optics.

v4.0.8 · uxrelease

Admin polish, clearer Lite/Pro flow, and Pro update channel

  • Polished the Aetos admin screens so third-party plugin notices are separated from Aetos cards and action buttons use one consistent style.
  • Clarified the Lite + Pro add-on model: Lite stays installed from WordPress.org, Pro is uploaded separately and unlocks the premium modules beside it.
  • Shipped the matching Pro add-on update channel with Aetos SEO Pro 1.0.2 for licensed customers.
  • Kept Lite positioning honest: the free plugin is not a page-capped teaser; you set the scan depth yourself, with 50 pages as the default and 0 for all pages.
v4.0.7 · i18nquality

English admin language safety

  • Converted the remaining Settings, Findings, Dashboard, and scan-recovery copy to the explicit Aetos language switch.
  • Added English-safe fallbacks for older stored findings, so English admin screens and summary emails do not show Arabic plugin copy from legacy rows.
  • Made audit summary emails language-aware, including language, direction, category labels, severity labels, and the call-to-action.
v4.0.6 · ux

Pro-aware dashboard copy

  • Updated Dashboard action labels and descriptions to recognize an active Aetos SEO Pro add-on while keeping the Lite-only wording unchanged for free installs.
  • Kept the audit behavior unchanged; this release focused on reducing confusion for licensed Pro sites.
v4.0.5 · architecture

Add-on extension hooks

  • Added prefixed extension hooks so separately installed add-ons can register audit checks, score categories, and category labels without replacing Aetos SEO Lite.
  • Kept the complete Lite audit and all Lite results available without a license.
v4.0.4 · i18nux

Language-aware AI prompts + English admin polish

  • Polished the English admin experience after the WordPress.org launch: copied AI prompts, quick settings labels, and brand header text now stay in English on English sites.
  • The Aetos UI language selector now shows language names in the active interface language, keeping English screens free from Arabic labels.
  • Updated the WordPress.org build to version 4.0.4 and kept the public listing, author display name, and download link aligned with the Aetos SEO brand.
v4.0.3 · i18nrelease

Fully bilingual admin + listed on the WordPress.org directory

  • The free edition is now listed on the official WordPress.org plugin directory — install or update it straight from your WordPress admin (Plugins → Add New → search "Aetos SEO").
  • Completed the bilingual interface: every audit finding (its title, the "why it matters" note, and the fix steps) plus all admin labels now render 100% in English on English sites and 100% in Arabic (RTL) on Arabic sites, with no mixed-language screens.
  • Added English and Arabic screenshots to the directory listing, alongside the Aetos eagle icon and banner.
v4.0.2 · release

First public release on WordPress.org

  • Aetos SEO (free edition) passed WordPress.org review and went public on the official directory.
  • Reworked how the plugin resolves file and directory locations to meet WordPress.org guidelines — it now uses the official WordPress path APIs throughout, with build-time guards so the old patterns cannot return.
v3.3.56 · reliability

Audit reliability round 2 — every network probe now has a time limit

  • Fixed: on some hosts the audit could still stall during the technical checks. Every network probe the audit makes (broken links, exposed-file checks, sitemap checks) now runs under a strict time budget, so the audit finishes even on slow servers.
  • If an audit failed partway on your site before, update and run it again — it will complete.
v3.3.55 · reliabilityperformance

Large-site audits no longer time out

  • Fixed: audits on large sites (hundreds of pages) could fail partway through — they now run much faster and finish.
  • Improved: the audit reuses the data it already gathered during the crawl instead of re-fetching every page, so it is lighter on your server and faster.
  • Fixed: the broken-link check now has a time limit, so a link-heavy site can no longer stall the whole audit.
v3.3.54 · accuracyux

One coherent score + readable Arabic in your reports

  • Fixed: the overall score and the per-area scores (SEO, AEO, GEO, AIO, UX) now tell one consistent story — no more a high score at the top and a contradicting low score below.
  • Improved: Arabic page links now show in readable Arabic in your reports and AI handoff bundle, instead of scrambled %-encoded characters.
  • Improved: the AI handoff bundle now asks ChatGPT and Claude to reply in Arabic automatically when your site is Arabic.
  • Fixed: a false alert that counted normal plugin files as risky database backups.
v3.3.53 · accuracyreliability

More accurate findings + cleaner categories

  • Improved: we removed duplicate findings, so each issue now appears once and clearly.
  • Fixed: a few findings were filed under the wrong category (like the HTTPS/security certificate and scheduled tasks) — they're now in the right section.
  • Improved: more reliable one-click auto-updates and cleaner site logs.
v3.3.52 · uxi18n

The report and findings are now fully in Arabic

  • Improved: the report you download (HTML) is now fully in Arabic — title, summary, and sections — so it's easier to read and share with your team or client.
  • Improved: every finding and its category now reads in clear Arabic, without scattered English terms mid-sentence.
  • Improved: a few findings were reworded to be clearer and more precise (like page speed and voice search), so you know exactly what to do.
v3.3.49 · reliabilityux

More accurate scans + fixed a false "update available" notice

  • Fixed: a notice that wrongly said Aetos itself needed an update right after you updated it — gone for good.
  • Improved: scan results are more accurate — findings that don't apply to your type of site are clearly marked as notes, not problems, and your score is no longer docked for things that are fine.
  • Improved: each finding now shows how many pages it affects, so you see the real scope at a glance.
  • Improved: the report you export into ChatGPT or Claude is cleaner and clearer, so the answers you get back are more accurate.
v3.3.48 · reliability

Truer findings — fewer false alarms

  • Improved: fewer false alarms — the scan now tells intentional sibling pages apart from real duplication.
  • Improved: long, well-structured pages are no longer flagged as a problem.
  • Added: a check that catches when a file on your site is saved in a way that can confuse search engines.
  • Fixed: the run-to-run comparison now works, so you can track your site getting better over time.
v3.3.47 · reliability

Higher accuracy + clearer progress tracking

  • Improved: removed findings that were showing up wrongly on healthy sites.
  • Improved: clearer progress tracking between scans — see what was fixed and what is still open.
v3.3.46 · reliability

Fixed false alarms caused by an incomplete scan

  • Fixed: five cases where the scan reported a phantom problem when it couldn't read the whole site.
  • Improved: when a scan can't finish, it now tells you clearly instead of returning a misleading result.
v3.3.45 · platformfeature

Current live version — Pro-aware auto-updater + dashboard hardening

  • Pro-aware auto-updater: one-click update from the WordPress plugins screen, license-aware
  • Worker recovers the license from the User-Agent when a manifest placeholder is left literal
  • Customer dashboard, ticketing, and in-WP messaging refinements across the v3.3.25–v3.3.45 weekly batches
  • Released on a weekly-batch cadence — see the in-plugin notice + email for each batch summary
v3.3.24 · featureplatform

In-WordPress messaging + Resend engagement tracking + Telegram (Arabic)

  • New in-plugin admin notices system — we can send targeted messages to your WP admin
  • Resend webhook for email open/click/bounce tracking (verified via svix signature)
  • Multi-recipient Telegram bot for admin notifications, with Arabic labels
  • Update-email endpoint for batched release announcements
v3.3.23 · platform

KV-backed per-customer ZIP delivery + Telegram bot

  • Each customer ZIP stored in Cloudflare KV, served via /v1/dl/AET-... URL
  • Same URL serves latest version — updates without re-issuing keys
  • Public download counter + Telegram ping on every download
  • Bot @aetos_seo_admin_bot fires on order received, ZIP delivered, install, audit
v3.3.22 · securityarchitectural

PASS 8 model audit — Agency tier + EU 16(m) waiver + canonical pricing

  • Agency tier (5 sites) wired end-to-end through orders.ts
  • Server-side canonical price table — rejects orders where amount_minor mismatches tier/currency
  • EU Distance Selling Directive 2011/83/EU Article 16(m) explicit waiver checkbox
  • build-licensed.ps1 -LicenseKey parameter (AET-XXXXXXXXXXXXXXXX validation)
v3.3.20 · security

PASS 5/6/7 closure — Gemini P0 + Claude P1 + DeepSeek P2

  • Gemini P0 fix: closed timing-based nonce side channel
  • Claude P1: license response staleness window narrowed
  • DeepSeek P2: defense-in-depth on download-token verification
  • Worker manifest endpoint live with Ed25519 signing
v3.3.15 · uxsecurity

Admin pages always visible (disabled when invalid) + 3-layer notice suppression

  • Audit/Results pages no longer disappear when license becomes invalid — visible but disabled
  • License Tier never displays "PRO" when status is Invalid (memory rule)
  • Reflection-based closure detection on admin_notices walker (closes Rank Math/Yoast leak)
  • CSS admin_head hiding + footer JS sweep — 3 independent layers
v3.3.10 · platform

Phase 4 e2e — buy flow validated on SiteGround

  • Buy → D1 order → license issuance → ZIP build → install → Pro mode all green
  • CIB Egypt bank accounts (USD/SAR/EGP) live on /buy/success/
  • Welcome email template bilingual (en + ar)
  • Round 1 testers onboarded — 3 free Pro licenses issued (founder grant, open-ended)
v3.3.5 · brandplatform

Aetos brand polish + Phase 3 platform groundwork

  • aetosseo.com v2 live — bilingual EN/AR + tools landing + free AI-Readiness Audit
  • Cloudflare D1 license database + KV cache + Worker license issuer
  • 4-AI-reviewer trust section, eagle brand assets standardized
  • Plugin auto-update path scaffolded (deferred to v3.4)
v3.3.0 · securityarchitectural

License Server v2 — Ed25519, server-only signing

  • Server holds the Ed25519 private key — plugin holds public key only
  • Cache stores full signed responses; cache forgery requires the private key
  • Legacy v3 (n8n) protocol kept as fallback during migration window
  • Closes the v3.x pepper-on-disk concern entirely
v3.2.0 · brand

Customer-facing rebrand → Aetos SEO

  • Plugin name + brand display = Aetos SEO
  • Publisher remains Nsr Elmtagr Digital Marketing
  • Internal slugs / option keys / namespaces unchanged — full backward compat
  • No security or schema changes
v3.1.5 · reliabilityux

Cache-preservation on lock timeout + filterable XLSX neutralizer

  • Nonce-lock timeout no longer overwrites the durable signed cache
  • Preserves the 14-day grace runway
  • CSV/XLSX neutralizer now filterable for trusted-data export pipelines
v3.1.4 · securitycode quality

Fail-closed nonce-lock + dead code removal

  • Lock acquisition timeout now fails CLOSED (routes through grace_or_fail)
  • Deleted dead Reports/Formats/XlsxWriter.php
v3.1.3 · security

License fail-open + KB containment + true-atomic nonce lock

  • Unknown signed remote statuses now hard-fail INVALID (was GRACE)
  • KB-root containment applied in full mode (was: focused mode only)
  • Grounding-brief prompt-injection sanitized on both call paths
  • Nonce-tracker lock replaced with TRUE atomic primitive (wp_cache_add / add_option)
  • XLSX formula neutralizer moved onto the active export path
v3.1.2 · security

Multi-nonce ring buffer + atomic nonce-tracker writes

  • Ring buffer of last 8 consumed nonces (closes alternating-nonce replay)
  • Atomic read-modify-write on the nonce store
  • Added SECURITY.md and CHANGELOG.md
v3.1.1 · security

License replay-attack closure + broker URL allowlist

  • Today freshness window (±36h) added to license-response verification
  • Per-build nonce-replay tracker
  • broker_url() restricted to vendor host allowlist
v3.1.0 · securityreliability

Strict remote signature default + 18 closed audit findings

  • Strict remote-signature verification default-on
  • IPv6 SSRF resolver (gethostbynamel → dns_get_record A+AAAA)
  • Atomic audit-run lock (wp_cache_add / add_option)
  • CSV/XLSX formula-injection neutralizer
  • KB prompt-injection guard for AI-augmented audits
  • KB-roots containment, ENGINE=InnoDB pin, schema downgrade guard
  • Daily chat-history prune cron
v3.0.3 · reliability

Pre-audit hotfixes

  • Atomic audit-run lock to prevent duplicate cron + AJAX runs
  • UrlValidator IPv6 + private-IP block (SSRF guard)
  • CSV formula-injection neutralizer added
  • Schema downgrade guard on plugin update
v3.0.0 · release

First commercial release

  • 17 audit categories (up from 12 in v2.x)
  • PDF report generation with cover + summary + per-category sections
  • Per-domain license activation (HMAC-based, v3 protocol)
  • Pricing tiers finalized: Lite (free), Pro ($79/yr launch price, then $99), Agency ($199/yr)
  • WordPress requirement documented; PHP 7.4+ minimum
v2.5.0 · i18nfeature

Bilingual UI + RTL audit support

  • Plugin admin UI translated: English + Arabic
  • RTL detection in audit output (proper logical-property suggestions)
  • Hreflang detection upgraded to handle Arabic-English bilingual sites correctly
  • Arabic schema markup: BreadcrumbList + Article in ar-EG locale
v2.2.0 · feature

License system v1 (HMAC, n8n-backed)

  • Per-domain activation with 14-day grace cache
  • License key delivered via email after purchase
  • Manual revocation via admin panel
  • No automatic renewal yet — annual licenses, manual renew
v2.1.0 · featureai

AI-ready JSON context export

  • Export your full audit + runtime + log analysis as a single JSON file
  • Drop the bundle into ChatGPT or Claude as system prompt + knowledge
  • Custom GPT integration documented
  • Bundle size: ~2-4 MB depending on site
v2.0.0 · architectural

OOP rewrite + 12 audit categories

  • Full plugin rewrite: PSR-4 namespacing, dependency injection, no globals
  • Audit engine modularized — each category is a separate class
  • Storage layer abstracted (preparing for license-system swap later)
  • Migration script for v1.x → v2.x option keys
  • 5x faster audit runs on large sites (500+ posts)
v1.3.0 · ux

Bulk URL audit + CSV export

  • Audit up to 100 URLs in one run
  • Per-URL findings exported to CSV
  • Progress bar with cancel button
  • Auto-recovery from interrupted runs
v1.2.0 · feature

Core Web Vitals via PageSpeed Insights

  • Per-page CWV scores: LCP, INP, CLS, FID
  • Free PageSpeed Insights API key supported (optional)
  • CWV history stored locally for trend analysis
  • Auto-flag pages where any CWV exceeds Google's "Poor" threshold
v1.1.0 · feature

Schema markup generator

  • Auto-generate JSON-LD for FAQ, Article, Product, BreadcrumbList
  • Manual override per post/page
  • Schema validator built-in (no external service)
  • Detects schema conflicts with Yoast/Rank Math if both are active
v1.0.0 · release

First public release

  • Eight audit categories: title, meta, headings, images, links, sitemap, robots, canonicals
  • WordPress.org plugin directory submission
  • Free for everyone — no license system yet
  • Tested on WP 6.0+ / PHP 7.4+
v0.5.0 · beta

Beta — sitemap detection + robots.txt parsing

  • XML sitemap auto-detection
  • robots.txt parsing + violation detection
  • Hreflang attribute scanning
  • Closed beta with 12 testers
v0.1.0 · alpha

First audit categories

  • Title + meta description analysis
  • Heading hierarchy check (single H1, sequential H2s)
  • Image alt-text coverage
  • Internal-only release
v0.0.1 · alpha

Initial commit

  • Plugin scaffold (header, activation hook, admin menu placeholder)
  • WordPress coding standards baseline
  • Project name at this stage: "NSR Elmtagr SEO"

Updates reach you inside WordPress itself — you'll see an "update available" notice under Aetos SEO on the Plugins page, with the details for each release here on this page.