This release focuses on making scan results easier to trust and easier to interpret. It reduces common false warnings on CMS and server-rendered sites, and clarifies vulnerability outputs so you can quickly tell what you are looking at.
More reliable page metadata checks
The viewport and language attribute checks now fall back to the rendered HTML when the static scan cannot locate the relevant templates. This helps avoid warnings on sites where these tags are emitted at render time, such as CMS setups that inject them through shared partials.
As a result, you should see fewer false positives for:
- Missing viewport meta tag
- Missing
langattribute on the<html>element
Clearer vulnerability scan summaries
When vulnerabilities are found, the summary now includes the scanning tool and ecosystem up front. This makes it easier to distinguish results across different dependency systems when reviewing advisories.
Email service checks also recognize configurations that are provided indirectly at runtime, which can reduce unnecessary warnings when the integration is already set up.