I’m noticing repeated HTTP requests like GET //wp-includes/wlwmanifest.xml and similar WordPress-related paths in my server logs, even though I don’t use WordPress. The source shows as localhost due to Nginx.
Why would someone or something be scanning for wlwmanifest.xml? Is this part of an automated probe for vulnerable WordPress installations or something else related to wlwmanifest.xml?