ointel/
├── ointel.php Main plugin file, constants, hooks
├── admin/
│ ├── class-ointel-admin.php Admin class: menu, routing, AJAX, header
│ ├── assets/
│ │ ├── ointel-admin-v2.css Orravo design system CSS (scoped)
│ │ └── ointel-admin-v2.js Admin JavaScript
│ └── views/
│ ├── view-dashboard.php Health score dashboard
│ ├── view-environment.php Environment checks
│ ├── view-plugins.php Plugin intelligence
│ ├── view-performance.php Performance checks
│ ├── view-content.php Content checks
│ ├── view-snapshots.php Snapshot system
│ ├── view-sessions.php Session intelligence
│ ├── view-alerts.php Alert configuration
│ ├── view-reports.php Report generation
│ └── view-settings.php Plugin settings
└── includes/
├── class-ointel-db.php Database layer
├── class-ointel-checks.php All health check logic
├── class-ointel-health.php Score calculator
├── class-ointel-snapshot.php Snapshot management
├── class-ointel-sessions.php Session tracking
├── class-ointel-alerts.php Alert sending
├── class-ointel-reports.php HTML report generator
├── class-ointel-scanner.php Background scan scheduler
├── class-ointel-rest.php REST API endpoints
└── class-ointel-cli.php WP-CLI commandsSecurity principle: All checks are read-only. OIntel never writes to files, never modifies external database tables, and never executes user-supplied code. All AJAX actions are protected by nonce verification and manage_options capability checks.