"Up" is not the same as "healthy"
A Magento store can be selling and, at the same time, piling up invisible debt: a version that ran out of security patches, the cron stopped, the SSL about to expire, pages getting de-indexed from Google, the catalog full of products with no image. None of this shows up in the Magento panel. None of it warns you. And all of it is detectable weeks before it does damage —all that's missing is something watching continuously, inside and outside the store.
That's the gap Ticpan fills.
Why Ticpan and not a scanner, an APM or an audit
Each tool looks at one piece. Ticpan looks at the full health, and it does so continuously.
External scanner — MageReport and similar
It detects known vulnerabilities by looking from the outside. It doesn't know whether your cron is alive, which modules you have, or whether you're running developer mode in production. You launch it yourself, by hand, when you remember.
APM — New Relic and similar
Excellent at performance. Blind to security, SEO and catalog health. And with a cost that doesn't fit most stores.
Agency audit
Deep and valuable the day it's delivered. But it's a snapshot: three deploys later, the store is no longer the one that was audited. Health is a movie, not a still frame.
Ticpan
All six areas at once —security, performance, SEO, code, infrastructure and business— evaluated continuously, combining an agent that sees the store from the inside and a cloud that measures it from the outside. And it alerts you when something changes for the worse.
Inside and outside, at the same time
The health of a Magento store can't be measured from the outside alone. That's why Ticpan combines two views:
- The agent (inside your store). A lightweight module,
way2ecommerce/ticpan-agent, installed via Composer. It sees what no remote scanner can: the real filesystem, the database, the exact versions of every module, whether the cron is beating, the PHP error logs. It collects, signs the payload (HMAC-SHA256) and sends it encrypted over HTTPS. Zero impact on store performance. - The cloud (from the outside). Ticpan evaluates in parallel what can only be seen from the network: SSL certificate expiry, DNS records, HTTP security headers, real load times, Core Web Vitals, exposure of sensitive files, API authentication.
- Your dashboard. The two views are crossed into a global and per-area health score, with the detail of what's failing, why and with what impact. Plus an alerting system that notifies you when something breaks.
Your data, safe. The agent only sends health metrics, never customer or order data. Communication is signed and uses an anti-replay window; tokens are revocable instantly from your panel.
Six areas, one score anyone can understand
63 checks spread across six pillars. Each one adds to your global score with a weight based on its real impact.
01 · Security — 17 checks (30%)
Unsupported Magento version, pending security patches, admin 2FA, password strength, obfuscated admin path, exposed sensitive files (.git, .env, phpinfo), unauthenticated REST API, security headers, HTTPS redirect and HSTS.
02 · Performance — 13 checks (25%)
Full Page Cache, block cache, production deployment mode, minified and merged JS/CSS, indexes up to date, server response times, LCP and real Core Web Vitals.
03 · Technical SEO — 11 checks (18%)
Indexability, sitemap.xml, robots.txt, canonical tags, meta descriptions, structured data, hreflang, Open Graph and URL structure.
04 · Code quality — 8 checks (15%)
Third-party modules and their status, overwritten core patches, PHP errors in logs, compliance with PSR-12 and Magento standards.
05 · Infrastructure / OPS — 8 checks (12%)
Cron alive and up to date, SSL certificate with expiry margin, supported PHP version, transactional email health (SPF/DMARC) and uptime.
06 · Business health — 6 checks (15%, Pro opt-in)
Products with no image or no description, inconsistent SKUs and stock, conflicts between price rules and active guest checkout.
Start for free. Move up to Pro when you need it.
The free plan is genuinely free, with no expiry. Pro adds depth, business and AI.
| Free — €0 (forever) | Pro — €14.99/month (everything in Free, plus) |
|---|---|
|
|
| Start for free | Try Pro |
Free tells you whether your store is healthy. Pro helps you keep it healthy and selling better.
You find out when it happens, not next Monday
Ticpan isn't a report you open once in a while: it's monitoring that alerts you. When a critical rule starts to fail, when your score drops below the threshold you set, when your SSL is about to expire, or when the agent stops showing signs of life, you get an alert. By email on any plan; also via Slack and webhook on Pro. With a cooldown margin so it warns you about what matters without overwhelming you.
From zero to your first score in minutes
- Create your free account. Sign up at ticpan.app and register your store. You receive a unique token.
- Install the agent module.
composer require way2ecommerce/ticpan-agentand configure the token. No template changes, no impact on production. - First sync. The agent sends its first report and the cloud completes the external analysis. In minutes you have your score.
- Review, prioritize and, if you want, set up alerts. The dashboard sorts the findings by impact. You decide what to fix first.
Who is Ticpan for?
Magento store managers and owners
If you couldn't confidently answer "which version am I running and does it have all the patches?", Ticpan gives you that answer and many more, continuously.
Magento agencies and partners
The thermometer that backs up your maintenance contract with data and warns you before the client calls. One view for each store you manage.
Technical teams inheriting a store
Stuck maintaining a Magento someone else built? The first sync is the best map of the real state you'll get in five minutes.
Management and business
A single score, understandable without being technical, to know whether the digital asset your sales depend on is under control.
Frequently asked questions
Is it really free?
Yes. The Free plan doesn't expire and doesn't ask for a card. You install the module, connect the store and get 34 checks, your score and email alerts. Pro (€14.99/month) is optional and adds business, AI and more checks.
Does it affect my store's performance?
No. The agent collects metrics in a lightweight way and sends a signed report periodically. It doesn't interfere with the storefront or the checkout.
What data leaves my store?
Only health metrics (versions, configuration, cron status, aggregated counts). Never customers' personal data or order content. Everything is signed with HMAC-SHA256 and sent over HTTPS.
Does it work with Adobe Commerce?
Yes. Ticpan is compatible with Magento Open Source and Adobe Commerce 2.x, including the cloud edition.
Does it replace my audit or my agency?
It doesn't replace it: it complements it and keeps it alive. An audit is a deep snapshot; Ticpan is the continuous monitoring between audits —and the objective data to work from.
Can I mute rules that don't apply to my case?
Yes. You can mark a rule as "accepted risk" with its justification; it's recorded in the audit log and its penalty is reduced. Critical rules, for security reasons, can't be muted.
What happens if the agent stops sending data?
Ticpan detects it. If more than 24 hours pass with no report, it marks the store as "expired" and alerts you —because a store that stops reporting is usually a store with a problem (cron down, token revoked, server down).
Your store is probably fine. Confirm it in five minutes.
The difference between who gets a scare and who doesn't is almost never luck: it's having something watching when you're not. Install Ticpan, look at your score and, in the worst case, you get peace of mind. In the best case, you discover today —and in time— the problem that would have ruined a quarter for you.
Free forever · No card required · Install in minutes
