Rabbit Builds Anti-Spam Comment Shield

Rabbit Builds Anti-Spam Comment Shield is a fast, reliable anti-spam plugin for the default WordPress commenting system. It blocks automated bot submissions using layered validation, while keeping the experience clean for real visitors.

Developed and maintained by Rabbit Builds — visit our website to explore more WordPress tools and solutions.

Important

• Clear your page cache after activation or after changing plugin settings.
• Works with the default WordPress comment form only (not AMP comment forms).

Features

• 🛡️ Hash-Based Verification — Blocks bots by hiding the comment form action URL
• 🍯 Honeypot Trap — Hidden field that catches bots filling every input
• ⏱️ Time-Based Check — Rejects comments submitted too quickly
• 🔒 REST API Protection — Blocks unauthenticated REST API comments
• 📊 Spam Statistics Dashboard — Real-time total & daily blocked spam counter
• ⚙️ Modern Settings Page — Beautiful card-based UI with toggle switches
• 🔔 Admin Bar Counter — See blocked spam count in the admin bar
• ✏️ Custom Block Message — Personalize the blocked spam response
• 100% GDPR Compliant — No external requests, no cookies, no tracking
• Captcha-Free — Completely invisible to your visitors
• ~200 bytes inline JavaScript — Zero performance impact
• Compatible with all page caching and performance optimization plugins

How does it work?

1. The plugin removes the comment form action URL from raw HTML output.
2. When real user interaction is detected (scroll, mouse move, touch, or focus), JavaScript restores the action URL with a unique hash token.
3. On submit, the server validates the hash token, checks the honeypot field, and verifies submission timing.
4. If any check fails, the request is blocked with a 403 response before spam can reach your database.

License

This plugin is licensed under GPL-2.0-or-later.
You may use, modify, and redistribute it under the terms of the GNU General Public License.