FeatureMulti-property dashboard for agencies — see all audited properties at a glance with health scores and last-audit timestamps.
FeatureRead-only share links — send an audit report to any client without requiring them to sign in.
FeatureScore alert thresholds — get notified when a property score drops below your target.
FeatureAnnual billing with 17% discount on Solo and Agency plans.
ImprovementConsent Mode v2 dedicated landing page at /consent-mode-v2-check with full coverage of all 12 audit checks.
ImprovementFeature comparison table on /pricing — side-by-side breakdown of Free, Solo, and Agency plan capabilities.
ImprovementWelcome onboarding card for first-time users — guided first audit experience.
Security hardening & billing
SecurityFull security audit pass — 17 critical and high severity findings addressed across authentication, rate limiting, and input handling.
SecuritySSRF protection on all audit URL submissions — blocks IPv4/IPv6 private ranges, IPv4-mapped IPv6 addresses, and cloud metadata endpoints.
SecurityAtomic rate limiting with CTE-INSERT-WHERE pattern — eliminates TOCTOU bypass vulnerabilities in concurrent request handling.
FeatureStripe subscription billing live — Free, Solo ($29/mo), and Agency ($99/mo) plans with Stripe Customer Portal for self-serve management.
FeatureCookie consent banner with Customize panel — our own GA4 Consent Mode v2 reference implementation, dogfooding our audit checks.
65+ checks milestone
FeatureExpanded to 10 check categories: Data Collection, Property Config, Event Tracking, Conversion Tracking, Google Ads, GTM Setup, Consent & Privacy, Data Quality, Integrations, and Performance.
ImprovementHard-cap scoring system — critical failures (e.g., DC_01 missing GA4 base tag) now clamp the overall score to prevent a false 'green' result when fundamental tracking is broken.
AI executive summaries (Agency)
FeatureAI-generated executive summary for Agency plan — plain-English explanation of every issue category plus a prioritized fix list, ready to paste into a client report.
FeaturePDF export for Solo and Agency plans — branded, structured audit report with all findings, scores, and recommendations.
GTM container audits
FeatureGTM API integration for container auditing — detects paused tags, unused variables, missing consent configurations, and workspace diffs.
FeatureBrowser-level checks via Playwright — real network inspection of consent signal timing, pre-consent cookie blocking, and CMP integration behavior.
Launch beta
FeatureInitial release with 30 checks across 5 categories — Data Collection, Event Tracking, Consent & Privacy, Conversion Tracking, and Data Quality.
FeatureGoogle OAuth (read-only) for GA4 property access — analytics.readonly scope, no write permissions ever requested.