WebRiskOps Checks Coverage - Accessibility, privacy, consent, trust and evidence checks

Evidence output

• Plain-language finding with affected URL and severity.
• Observed header, cookie, browser, or scope evidence without secrets.
• Recommended owner action or ticket-only remediation path.
• Explicit limitation explaining what the check does not prove.

Excluded behavior

• Exploit validation or proof-of-compromise
• Credential attacks, password spraying, phishing, or session bypass
• Denial-of-service, fuzzing, invasive enumeration, or destructive payloads
• Security certification, compliance certification, legal advice, or guarantee

Priority 1

WordPress/WooCommerce

Best first plugin target for checkout, form, theme and plugin-conflict diagnostics.

Priority 2

Shopify theme/app block

Next target because Shopify acquisition and agency pages already exist, but app permissions need a separate scoped model.

Priority 3

Generic CMS/theme handoff

Fallback architecture for platforms without a dedicated plugin package.

Observed demand signals

• public_use_caseWooCommerce checkout scan page covers checkout, theme and plugin symptoms.
• public_use_caseWooCommerce agency page covers client checkout risk, plugin symptoms and white-label handoff.
• project_access_catalogCMS/theme and WooCommerce/WordPress access request options already define scoped, revocable customer instructions.
• project_domainProject platform support includes WordPress and WooCommerce as persisted project platform values.

Plugin layers

• Plugin runtime shellLoad only inside customer-installed WordPress/WooCommerce admin context and expose explicit diagnostic actions.
• Safe diagnostics collectorCollect plugin/theme/version, checkout route, visible configuration state and browser symptoms without secrets or order/customer records.
• Handoff API clientSend customer-approved diagnostic payloads to the authenticated WebRiskOps evidence capture contract with project and optional report IDs.
• Customer consent settingsStore endpoint, project ID, optional report ID and token locally in the plugin settings area with clear revoke guidance.
• Distribution and agency reviewKeep package metadata, white-label boundaries, client ownership and update/revocation rules reviewable before distribution expands.

Handoff contract

/api/browser-extension/evidence-captures

• site_url
• platform
• wordpress_version
• woocommerce_version
• active_theme
• active_plugin_names
• checkout_route
• visible_browser_symptoms
• captured_at

Boundaries

• Customer-initiated diagnostics only; no background crawling or uncontrolled production fixes.
• No storage or upload of admin passwords, application passwords, API keys, order records, customer records or payment data.
• Production changes, plugin setting writes, theme edits, checkout edits and publish actions stay blocked.
• No compliance certification, legal advice, security certification, accessibility certification or buyer acceptance guarantee.

Spain technical adapter candidate

Spain

Map partner-approved fields, build adapter tests and expose technical delivery logs only.

Peppol BIS Billing technical candidate

Partner-defined Peppol authority

Implement partner-approved schema mapping and transport diagnostics only.

Country-specific invoice export candidate

Partner-defined country

Generate technical exports from provider records after partner approval of fields and wording.

Activation gates

• Local partner owner namedPartner name, contact, jurisdiction and responsibility statement.
• Partner-approved requirements packField list, validation rules, transport path, test cases and excluded assumptions.
• Sandbox or test channel availableNon-production credentials, endpoint, sample payloads and revocation path.
• Customer wording approved by partnerApproved UI/report/help copy with no WebRiskOps interpretation claims.

Technical surfaces

• Schema mappingTransform provider invoice records into partner-approved technical fields.
• Transport adapterSend or export payloads only through partner-approved non-production and production channels.
• Validation harnessRun deterministic structural tests supplied or approved by the partner.
• Technical audit logRecord payload IDs, timestamps, endpoint status and partner-approved error codes.

Excluded claims

• Tax advice or legal interpretation.
• Country compliance certification.
• Production filing without partner signoff.
• VAT validation opinion.
• Accounting policy recommendation.
• Government acceptance guarantee.

Product inventory

Track product name, version, deployment surface, support window and dependency inventory supplied by the customer.

Vulnerability handling

Collect policy links, intake route, triage state, disclosure timing and remediation evidence.

Security update process

Record update channel, patch notes, user notification path and fixed-version evidence.

Secure configuration

Capture documented defaults, hardening notes and unsafe-default exceptions for review.

Dependency and SBOM evidence

Reference generated dependency lists, scanner outputs and known-vulnerability triage.

Technical audit trail

Preserve timestamps, evidence sources, scan IDs and review status for customer-controlled records.

Evidence artifacts

• Product/version inventory export.
• Vulnerability intake and handling policy evidence.
• Security update release-note evidence.
• Dependency or SBOM scanner output.
• Technical gap register with owner and status.
• Evidence source log with timestamps and URLs.

Boundaries

• No CE marking, notified-body, conformity-assessment or legal certification claim.
• No decision that a product is in or out of CRA scope.
• No guarantee that evidence satisfies a regulator, buyer or assessor.
• No replacement for manufacturer, importer, distributor or legal obligations.
• No automatic public vulnerability disclosure or regulatory notification.

Excluded claims

• CRA compliance certification.
• CE marking readiness opinion.
• Notified-body substitute assessment.
• Legal conformity conclusion.
• Regulatory filing guarantee.
• Market-placement approval.

Purpose and scope record

Workflow purpose, user-visible task, allowed inputs, disallowed use and owner.

Input/output traceability

Request ID, prompt/template version, model/provider label, output hash and related product object.

Human review and override

Review state, reviewer role, approval timestamp, rejected output reason and override path.

Fallback behavior

Non-AI fallback, degraded mode copy and customer-safe blocked-state reason.

Data minimization

Allowed fields, excluded sensitive data and retention boundary.

Cost and usage control

Account/package budget context, operation type and usage ledger link.

Change and version control

Prompt/config version, release note, test case and rollback owner.

Evidence artifacts

• Prompt or template version record.
• Model/provider selection record.
• Input/output trace ID.
• Human review decision log.
• Fallback or blocked-state screenshot/copy.
• Sensitive-field exclusion list.
• Account/package usage ledger reference.

android

Android static package review

Inspect customer-provided Android manifest, permissions, SDK/dependency inventory and declared data-safety evidence.

ios

iOS static package review

Inspect customer-provided privacy manifest, entitlements, SDK/dependency inventory and App Store privacy evidence.

android_ios

Mobile runtime accessibility pass

Run only authorized test flows on non-production builds with synthetic accounts and captured screenshots/logs.

store_listing

Store listing privacy cross-check

Compare customer-supplied store privacy declarations with observed permissions, SDK inventory and app privacy artifacts.

Required inputs

• Customer-owned test build or package artifact.
• Explicit written authorization for package review and runtime test flows.
• Synthetic test account with no real customer data.
• App store privacy declaration export or screenshots.
• Declared permissions, SDKs and third-party service inventory.
• Target test flows and supported device/platform matrix.
• No production user accounts, credentials or real customer records.

Privacy checks

• Permission-to-purpose inventory for sensitive device capabilities.
• SDK and third-party service disclosure cross-check.
• Store privacy label and data-safety declaration consistency review.
• Tracking, analytics and advertising identifier evidence mapping.
• Deletion/request-path and privacy-policy link evidence.
• Synthetic runtime logs for unexpected network destinations where authorized.

Accessibility checks

• Touch target and spacing observations on selected screens.
• Text scaling and orientation behavior on selected screens.
• Accessible name, label and hint inventory for key controls.
• Focus order and keyboard/switch-control path observations where supported.
• Contrast and visible state evidence on selected screens.
• Error, empty and blocked-state messaging observations.

Platform scan paths

Use when the buyer already knows the storefront or commerce platform.

Risk category paths

Use when the buyer knows the risk area: consent, checkout, accessibility, security or trust.

Agency paths

Use when the buyer needs repeatable client scans, white-label reports or Agency Plan boundaries.