PHPackages convergine/craft-bastion - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. convergine/craft-bastion ActiveCraft-plugin[Security](/categories/security) convergine/craft-bastion ======================== Craft Bastion plugin 1.0.0(3mo ago)020proprietaryPHP Since Mar 19Pushed 3mo agoCompare [ Source](https://github.com/convergine/craft-bastion)[ Packagist](https://packagist.org/packages/convergine/craft-bastion)[ RSS](/packages/convergine-craft-bastion/feed)WikiDiscussions main Synced 3w ago READMEChangelog (1)Dependencies (2)Versions (2)Used By (0) Bastion for Craft CMS 5 ======================= [](#bastion-for-craft-cms-5) [![Screenshot](./docs/images/bastion_banner.png)](./docs/images/bastion_banner.png) Bastion is an all-in-one security plugin for Craft CMS 5. It provides a security dashboard with automated scanning, IP-based access control, Content Security Policy management, bot defence, dependency auditing, and update reminders — all from within your control panel. Features -------- [](#features) - **Security Dashboard & Scanner**: Run comprehensive security scans covering 20+ checks — critical CMS/plugin updates, HTTPS enforcement, dev mode status, file/folder permissions, PHP version support, security headers, admin username validation, search engine indexing status, and more. Results are stored and displayed with pass/warning/fail indicators. - **SSL Certificate Monitoring**: Fetch SSL/TLS security assessments via SSL Labs API, including certificate grade, protocol support, cipher strength, and expiration dates. Receive automated email reminders at 7 days and 24 hours before certificate expiration. - **Domain Expiration Monitoring**: Track domain registration expiration dates using RDAP lookups. Automated email reminders at 30 days and 7 days before expiration. Supports IDN domains and automatically detects local/development environments. - **Disk Space Monitoring**: Monitor server disk usage in real time with configurable threshold alerts. Receive email notifications when disk usage exceeds your defined percentage limit. - **IP Restrictions**: Restrict access to both the front-end and the control panel independently by IP address. Supports single IPs, CIDR ranges, and IP ranges (IPv4 and IPv6). Choose between redirecting blocked visitors or rendering a custom Twig template. - **Content Security Policy (CSP)**: Build and manage 24 CSP directives directly from the control panel. Deploy via HTTP header, meta tag, or report-only mode. Includes nonce generation for inline scripts/styles and SEOmatic compatibility. One-click default policy setup available. - **Security Headers**: Configure additional HTTP security headers (Referrer-Policy, Strict-Transport-Security, X-Content-Type-Options, X-Frame-Options, X-XSS-Protection, CORS) from a single settings page. - **Bot Defence**: Automatically block unwanted bots at the server level via .htaccess rules. Supports Apache, LiteSpeed, and OpenLiteSpeed with Cloudflare detection. Automatic .htaccess backup management. - **Dependency Audit**: Scan your Composer dependencies against the Packagist security advisories API. View vulnerable packages with severity levels (critical, high, medium, low) and detailed advisory information. - **Updates Reminder**: Receive scheduled email notifications when Craft CMS or plugin updates are available. Configurable frequency (daily, weekly, bi-weekly, monthly), send day, and recipient list with a self-healing background job. Requirements ------------ [](#requirements) - Craft CMS 5.0.0 or later - PHP 8.2 or later Installation ------------ [](#installation) You can install this plugin from the Plugin Store or with Composer. #### From the Plugin Store [](#from-the-plugin-store) Go to the Plugin Store in your project's Control Panel and search for "Bastion". Then click on the "Install" button in its modal window. #### With Composer [](#with-composer) Open your terminal and run the following commands: ``` # go to the project directory cd /path/to/my-project.test # tell Composer to load the plugin composer require convergine/craft-bastion # tell Craft to install the plugin ./craft plugin/install craft-bastion ``` Support ------- [](#support) For any issues or questions, you can reach us by email or by opening an issue on [GitHub](https://github.com/convergine/craft-bastion/issues). ### Health Score 33 — LowBetter than 72% of packages Maintenance81 Actively maintained with recent releases Popularity6 Limited adoption so far Community8 Small or concentrated contributor base Maturity34 Early-stage or recently created project Bus Factor1 Top contributor holds 60% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Unknown Total 1 Last Release 99d ago ### Community Maintainers ![](https://avatars.githubusercontent.com/u/7737586?v=4)[Convergine](/maintainers/convergine)[@convergine](https://github.com/convergine) --- Top Contributors [![convergine](https://avatars.githubusercontent.com/u/7737586?v=4)](https://github.com/convergine "convergine (3 commits)")[![konstantin-convergine](https://avatars.githubusercontent.com/u/158498311?v=4)](https://github.com/konstantin-convergine "konstantin-convergine (2 commits)") --- Tags bot-protectioncraft-cms-5craft-plugincraftcmscspdependency-auditip-restrictionsphpsecurityweb-securitycraftcms ### Embed Badge ![Health badge](/badges/convergine-craft-bastion/health.svg) ``` [![Health](https://phpackages.com/badges/convergine-craft-bastion/health.svg)](https://phpackages.com/packages/convergine-craft-bastion) ``` ### Alternatives [spicyweb/craft-neo A Matrix-like field type with block hierarchy 393808.8k10](/packages/spicyweb-craft-neo)[craftcms/feed-me Import content from XML, RSS, CSV or JSON feeds into entries, categories, Craft Commerce products, and more. 292943.4k27](/packages/craftcms-feed-me)[verbb/formie The most user-friendly forms plugin for Craft. 100387.6k57](/packages/verbb-formie)[craftpulse/craft-password-policy Password Policy plugin 2829.0k2](/packages/craftpulse-craft-password-policy)[verbb/vizy A flexible visual editor field for Craft. 4249.7k](/packages/verbb-vizy)[verbb/hyper A user-friendly links field for Craft. 24142.6k12](/packages/verbb-hyper) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)