We're open-sourcing 3 CLI tools for website compliance testing

We built a scanner for European websites. Along the way we extracted three internal tools that work great standalone. All MIT licensed, all CI-friendly. 1. Cookie Consent Validator Clicks "Reject All" on your cookie banner and checks if tracking actually stops. npx @trustyourwebsite/cookie-consent-validator https://your-site.com Detects the CMP (Cookiebot, OneTrust, Complianz, CookieYes, Iubenda, generic), records cookies and network requests before and after rejection, flags violations. Most cookie banners are decorative. The Dutch DPA fined Kruidvat (€600K) and Coolblue (€40K) for banners that didn't actually work. This tool catches that. GitHub: trustyourwebsite/cookie-consent-validator 2. Security Headers Checker Grades your security headers A+ to F with specific remediation advice. npx @trustyourwebsite/security-headers https://your-site.com Checks HSTS, CSP (full directive parsing, flags unsafe-inline / unsafe-eval ), X-Content-Type-Options, X-Frame-Options, Referrer-Policy, Perm