Security Basics (New Service)

• Add Security Basics service with plugin admin and panel sync
• Add detailed explanations for XML-RPC and security headers
• Add documentation migration and login URL pill design
• Add Login Protection section to plugin admin and translate security strings 

Monitoring (New Feature)

• Add Monitoring section to panel with site status and alert notes
• Add Login Monitoring, Login Protection, and File Integrity features
• Add IP geolocation popover on hover in login monitoring
• Fix IP lookup: proxy through panel using existing IpLookup service
• Add monitoring service documentation (EN/ES/FR)

Malware Scanner

• Add Malware Scanner to Security Basics tab with panel proxy and plugin scan engine
• Add detail modal with code context
• Translate malware scanner strings and fix stale results on re-sync
• Add false-positive disclaimer to malware scan results
• Replace atob/btoa with custom base64 to avoid scanner false positive
• Replace hex-encoded emoji with UTF-8 literals to avoid scanner flag

Threats & Vulnerabilities

• Add Threats & Vulnerabilities backend infrastructure
• Add Threats & Vulnerabilities tab to monitoring site detail page
• Switch vulnerability feed to WPVulnerability.net (free, no key)
• Fix threats cron: parse plugins_data array format correctly
• Add vulnerability detail modal and fix HTML entities in titles
• Fix HTML entities in vulnerability names and titles

Backup

• Increase retry window to 6h and log detailed cURL diagnostics
• Fix ErrorLog::error() calls missing required $source parameter in backup-cron