Yes, same question here. Even in all kind of custom login, the plugin is detecting all of them and apply every single security policy to all forms, IP bans as a example: So imagine that a customer is trying to login in his woocommerce account and get baned (depends on your settings) for 10 minutes or whatever. These policies should be only for login/register wordpress form.
:S
