[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fP6Os8eKdSu7iM8EfbKP04JXgU7-_65EiOglv5njKjHQ":3},{"slug":4,"display_name":5,"profile_url":6,"plugin_count":7,"total_installs":8,"avg_security_score":9,"avg_patch_time_days":10,"trust_score":11,"computed_at":12,"plugins":13},"duocircle","DuoCircle LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Fduocircle\u002F",1,0,100,30,94,"2026-04-05T02:36:31.491Z",[14],{"slug":15,"name":16,"version":17,"author":5,"author_profile":6,"description":18,"short_description":19,"active_installs":8,"downloaded":20,"rating":8,"num_ratings":8,"last_updated":21,"tested_up_to":22,"requires_at_least":23,"requires_php":24,"tags":25,"homepage":21,"download_link":31,"security_score":9,"vuln_count":8,"unpatched_count":8,"last_vuln_date":32,"fetched_at":33},"dmarcreport-domain-auth-checker","DMARCREPORT Domain Auth Checker","1.7.2","\u003Cp>DMARCREPORT Domain Auth Checker lets you embed interactive email authentication record checkers on any WordPress page or post using a simple shortcode. All DNS lookups run locally through PHP’s native \u003Ccode>dns_get_record()\u003C\u002Fcode> function. The MTA-STS checker also fetches the domain’s MTA-STS policy file over HTTPS (see External Services below).\u003C\u002Fp>\n\u003Ch4>SPF Checker\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Analyze SPF records for any domain\u003C\u002Fli>\n\u003Cli>Monitor DNS lookup count (RFC 7208 limit of 10)\u003C\u002Fli>\n\u003Cli>View SPF record structure in an interactive tree\u003C\u002Fli>\n\u003Cli>Per-mechanism lookup count breakdown\u003C\u002Fli>\n\u003Cli>Health status indicator (Good \u002F At Limit \u002F Critical)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>DMARC Checker\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Analyze DMARC policies and configuration\u003C\u002Fli>\n\u003Cli>Interactive DMARC record builder\u003C\u002Fli>\n\u003Cli>Tag parsing with descriptions\u003C\u002Fli>\n\u003Cli>DKIM and SPF alignment checks\u003C\u002Fli>\n\u003Cli>Reporting configuration (rua\u002Fruf) verification\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>TLS-RPT Checker\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Check SMTP TLS Reporting configuration\u003C\u002Fli>\n\u003Cli>Validate mailto: and https: reporting endpoints\u003C\u002Fli>\n\u003Cli>Health scoring for TLS-RPT setup\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>BIMI Checker\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Verify Brand Indicators for Message Identification setup\u003C\u002Fli>\n\u003Cli>Visual logo preview\u003C\u002Fli>\n\u003Cli>VMC (Verified Mark Certificate) detection\u003C\u002Fli>\n\u003Cli>Custom selector support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>MTA-STS Checker\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Verify MTA-STS DNS TXT record\u003C\u002Fli>\n\u003Cli>Fetch and parse the MTA-STS policy file\u003C\u002Fli>\n\u003Cli>Mode detection (enforce\u002Ftesting\u002Fnone)\u003C\u002Fli>\n\u003Cli>MX host listing from policy\u003C\u002Fli>\n\u003Cli>Max age analysis\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Common Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Copy to clipboard for domains and record values\u003C\u002Fli>\n\u003Cli>Fully responsive design (desktop and mobile)\u003C\u002Fli>\n\u003Cli>URL deep linking — share results via \u003Ccode>?domain=example.com\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Visual health indicators for all checkers\u003C\u002Fli>\n\u003Cli>Powered by dmarcreport.com watermark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>Use the \u003Ccode>[dmarcreport_domain_auth_checker]\u003C\u002Fcode> shortcode with the \u003Ccode>type\u003C\u002Fcode> attribute:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>SPF\u003C\u002Fstrong> (default): \u003Ccode>[dmarcreport_domain_auth_checker]\u003C\u002Fcode> or \u003Ccode>[dmarcreport_domain_auth_checker type=\"spf\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>DMARC\u003C\u002Fstrong>: \u003Ccode>[dmarcreport_domain_auth_checker type=\"dmarc\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>TLS-RPT\u003C\u002Fstrong>: \u003Ccode>[dmarcreport_domain_auth_checker type=\"tlsrpt\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>BIMI\u003C\u002Fstrong>: \u003Ccode>[dmarcreport_domain_auth_checker type=\"bimi\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>MTA-STS\u003C\u002Fstrong>: \u003Ccode>[dmarcreport_domain_auth_checker type=\"mta-sts\"]\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All checkers support the \u003Ccode>?domain=example.com\u003C\u002Fcode> URL parameter for deep linking and auto-analysis.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin performs DNS lookups and, for the MTA-STS checker, an HTTPS request to the domain being analyzed. No data is sent to any third-party API or service operated by the plugin author.\u003C\u002Fp>\n\u003Ch4>DNS lookups\u003C\u002Fh4>\n\u003Cp>When a user submits a domain for analysis, the plugin uses PHP’s built-in \u003Ccode>dns_get_record()\u003C\u002Fcode> function to query DNS records directly from your WordPress server. The domain name entered by the user is sent as a standard DNS query. This happens each time a user clicks the analyze button for any checker (SPF, DMARC, TLS-RPT, BIMI, or MTA-STS).\u003C\u002Fp>\n\u003Cp>DNS lookups are handled by your server’s configured DNS resolver and are not routed through any external API.\u003C\u002Fp>\n\u003Ch4>MTA-STS policy file fetch\u003C\u002Fh4>\n\u003Cp>The MTA-STS checker fetches the domain’s MTA-STS policy file by making an HTTPS GET request to:\u003Cbr \u002F>\n    https:\u002F\u002Fmta-sts.{domain}\u002F.well-known\u002Fmta-sts.txt\u003C\u002Fp>\n\u003Cp>This request is sent to the web server of the domain being analyzed (not to a third-party service). It is made each time a user analyzes a domain using the MTA-STS checker. Only the HTTP request itself is sent — no additional user data, cookies, or tracking information is included.\u003C\u002Fp>\n\u003Cp>Since this request goes directly to the analyzed domain’s own web server, there is no third-party service provider with separate terms of use or privacy policy. The connection uses HTTPS with SSL verification enabled.\u003C\u002Fp>\n\u003Ch4>Outbound links\u003C\u002Fh4>\n\u003Cp>The plugin includes links to \u003Ca href=\"https:\u002F\u002Fdmarcreport.com\" rel=\"nofollow ugc\">dmarcreport.com\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fautospf.com\" rel=\"nofollow ugc\">autospf.com\u003C\u002Fa> (services by the plugin author, DuoCircle). These appear as “Powered by” watermarks and pricing call-to-action buttons within the checker interface. They are standard hyperlinks that open in a new browser tab when clicked by the user — no data is sent to these sites automatically by the plugin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdmarcreport.com\u002Fterms-and-conditions\u002F\" rel=\"nofollow ugc\">dmarcreport.com Terms and Conditions\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdmarcreport.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">dmarcreport.com Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fautospf.com\u002Fterms-and-conditions\u002F\" rel=\"nofollow ugc\">autospf.com Terms and Conditions\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fautospf.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">autospf.com Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Check SPF, DMARC, BIMI, MTA-STS and TLS-RPT records for any domain. Embed email authentication checkers with a shortcode.",111,"","6.9.4","5.0","7.4",[26,27,28,29,30],"bimi","dmarc","email-authentication","mta-sts","spf","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdmarcreport-domain-auth-checker.1.7.2.zip",null,"2026-03-15T10:48:56.248Z"]