https://kokkeloren.no/
Severe privacy issues requiring immediate attention
40
Trackers Found
15
Cookies
120
Network Requests
9.0s
Load Time
Kokkeløren.no has implemented basic consent infrastructure through CookieBot but is operating in significant GDPR violation by allowing extensive tracking to start before visitors can consent. The site is sending personal data including names and emails to multiple US companies (Snapchat, Microsoft, Google, HubSpot) without proper legal basis, creating high regulatory risk. While the consent banner is present, it lacks a proper reject option and doesn't prevent pre-consent data collection, representing the exact compliance failures Norwegian data protection authorities are actively investigating and fining.
Critical Actions:
Detail
Found 13 tracking cookie(s) and 1 tracking request(s) BEFORE any consent interaction. This is the most common GDPR violation.
Remediation
Configure your CookieBot implementation to block all non-essential cookies and tracking until after visitor consent. Ensure Google Tag Manager waits for consent signals before firing tracking tags.
Legal Reference
GDPR Art. 6, ePrivacy Directive Art. 5(3)
Raw Data
{
"tracking_cookies_before_consent": 13,
"tracking_requests_before_consent": 1
}Detail
The consent banner has no visible 'reject' or 'decline' button. Under GDPR, rejecting cookies must be as easy as accepting them.
Remediation
Add a prominent 'Reject All' or 'Decline' button to your consent banner. The reject option must be equally visible and accessible as the accept option.
Legal Reference
GDPR Art. 7, Planet49 ruling
Raw Data
{
"reject_button_found": false
}Detail
Found CookieBot CMP (CookieBot (Usercentrics)) loading from https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false. Purpose: Cookie consent management platform.
Remediation
Ensure CookieBot is configured to block all tracking until consent is given, and that the consent banner includes clear reject options.
Legal Reference
GDPR Art. 25
Raw Data
{
"vendor": "CookieBot (Usercentrics)",
"purpose": "Cookie consent management platform",
"category": "consent",
"script_src": "https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false",
"gdpr_concern": "Consent management tool.",
"tracker_name": "CookieBot CMP",
"data_collected": [
"consent preferences"
]
}Detail
2 request(s) to consent.cookiebot.com (Cookie consent management platform).
Remediation
No action needed - this is normal operation of the consent management platform.
Raw Data
{
"domain": "consent.cookiebot.com",
"vendor": "CookieBot (Usercentrics)",
"purpose": "Cookie consent management platform",
"sample_urls": [
"https://consent.cookiebot.com/uc.js?cbid=722d4d5b-d6d6-4159-8ee4-e23e6a44b532&implementation=gtm&consentmode-dataredaction=dynamic",
"https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"script"
]
}Detail
Cookie consent banner powered by Custom consent banner (Custom) is present on the page.
Remediation
Focus on fixing the banner's functionality - ensure it blocks tracking before consent and provides a clear reject option.
Legal Reference
GDPR Art. 7
Raw Data
{
"cmp": "Custom consent banner",
"vendor": "Custom"
}Detail
1 request(s) to track-eu1.hubspot.com (unknown) — PII detected: ln (URL parameter).
Remediation
Configure HubSpot tracking to respect consent preferences and block data collection until consent is obtained. Review HubSpot's EU data processing agreements.
Legal Reference
GDPR Art. 6, GDPR Art. 7
Raw Data
{
"domain": "track-eu1.hubspot.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://track-eu1.hubspot.com/__ptq.gif?k=1&sd=1920x1080&cd=24-bit&cs=UTF-8&ln=nb-no&v=1.1&a=139580736&pu=https%3A%2F%2Fkokkeloren.no%2F&t=Matkasse+fra+Kokkel%C3%B8ren&cts=1773750046827&vi=61f8125ad1e"
],
"pii_detected": [
"ln (URL parameter)"
],
"request_count": 1,
"resource_types": [
"image"
]
}Detail
4 request(s) to tr.snapchat.com (unknown) — PII detected: name in POST body, e in POST body.
Remediation
Remove Snapchat Pixel tracking code immediately or implement proper consent management that blocks data transmission until explicit consent is given. Consider privacy-friendly analytics alternatives.
Legal Reference
GDPR Art. 6, GDPR Art. 7, ePrivacy Directive Art. 5(3)
Raw Data
{
"domain": "tr.snapchat.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://tr.snapchat.com/config/no/1d31ab17-414f-451d-8894-ae8da4c42eca.json?v=3.54.2-2603162155",
"https://tr.snapchat.com/cm/i?pid=1d31ab17-414f-451d-8894-ae8da4c42eca&u_scsid=a8f9573b-0a78-4daa-ba18-409ce978a7b9&u_sclid=ea4e4daa-1f5b-405b-b7d2-a3f0a8b70146",
"https://tr.snapchat.com/p",
"https://tr.snapchat.com/p"
],
"pii_detected": [
"name in POST body",
"e in POST body"
],
"request_count": 4,
"resource_types": [
"fetch",
"ping",
"document"
]
}Detail
Third-party cookie from sc-static.net, expires: 0 days, purpose: Unrecognized cookie.
Remediation
Identify the purpose of this cookie or remove it. Unknown cookies create compliance uncertainty and may indicate undisclosed tracking.
Legal Reference
GDPR Art. 13, ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "None",
"cookie_name": "X-AB",
"cookie_domain": "sc-static.net",
"is_long_lived": false,
"is_third_party": true
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Snapchat conversion tracking cookie.. Vendor: Snap Inc..
Remediation
Configure Snapchat cookies to only load after explicit marketing consent is given. Consider removing Snapchat tracking entirely if not essential for business operations.
Legal Reference
GDPR Art. 7, ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "1 years",
"secure": false,
"vendor": "Snap Inc.",
"purpose": "marketing",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_scid",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Snapchat conversion tracking cookie (restricted).. Vendor: Snap Inc..
Remediation
Block this cookie until marketing consent is obtained. Review if Snapchat tracking provides sufficient value to justify the privacy impact.
Legal Reference
GDPR Art. 7, ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "1 years",
"secure": false,
"vendor": "Snap Inc.",
"purpose": "marketing",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_scid_r",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Raw Data
{
"expiry": "session",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "None",
"cookie_name": "_cfuvid",
"cookie_domain": "hubspot.com",
"is_long_lived": false,
"is_third_party": true
}Detail
First-party cookie from kokkeloren.no, expires: 5 months, purpose: HubSpot visitor tracking cookie.. Vendor: HubSpot.
Remediation
Configure HubSpot analytics to respect consent preferences. Consider if this long tracking period is necessary for your business purposes.
Legal Reference
GDPR Art. 6, GDPR Art. 7
Raw Data
{
"expiry": "5 months",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hstc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 5 months, purpose: HubSpot user token for visitor identification.. Vendor: HubSpot.
Remediation
Ensure HubSpot visitor tracking only starts after analytics consent is given. Review data retention settings in HubSpot.
Legal Reference
GDPR Art. 6, GDPR Art. 7
Raw Data
{
"expiry": "5 months",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "hubspotutk",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: session, purpose: HubSpot session reset detection.. Vendor: HubSpot.
Remediation
Configure to respect analytics consent preferences. This is part of HubSpot's visitor tracking suite.
Legal Reference
GDPR Art. 6
Raw Data
{
"expiry": "session",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hssrc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 0 days, purpose: HubSpot session tracking.. Vendor: HubSpot.
Remediation
Ensure this session tracking respects visitor consent preferences for analytics.
Legal Reference
GDPR Art. 6
Raw Data
{
"expiry": "0 days",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hssc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from clerk.kokkeloren.no, expires: 1 years, purpose: Unrecognized cookie.
Remediation
Document the purpose of this cookie in your privacy policy. If it's essential for authentication, ensure it's classified as strictly necessary.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "Lax",
"cookie_name": "__client",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Unrecognized cookie.
Remediation
Clarify the purpose of user authentication tokens and ensure they're properly secured and documented in your privacy policy.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__client_uat",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Unrecognized cookie.
Remediation
Review if year-long authentication cookies are necessary. Consider shorter expiration periods and document their purpose.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__client_uat_rj7vSR9-",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from clerk.kokkeloren.no, expires: session, purpose: Unrecognized cookie.
Remediation
Verify if these are strictly necessary for site functionality or if they process personal data requiring consent.
Raw Data
{
"expiry": "session",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "None",
"cookie_name": "_cfuvid",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 6 days, purpose: Unrecognized cookie.
Remediation
Identify this cookie's purpose or remove it. Ensure all Snapchat-related cookies are properly managed through consent.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "6 days",
"secure": false,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_ScCbts",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
4 request(s) to policy.app.cookieinformation.com (unknown).
Remediation
No action required - this is your consent management platform operating normally.
Raw Data
{
"domain": "policy.app.cookieinformation.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://policy.app.cookieinformation.com/uc.js",
"https://policy.app.cookieinformation.com/cookie-data/kokkeloren.no/cabl.json",
"https://policy.app.cookieinformation.com/cookiesharingiframe.html",
"https://policy.app.cookieinformation.com/latest/66273/en.js"
],
"pii_detected": [],
"request_count": 4,
"resource_types": [
"xhr",
"script",
"document"
]
}Detail
2 request(s) to consentcdn.cookiebot.com (unknown).
Remediation
Verify you're only using one consent management platform to avoid conflicts between Cookie Information and Cookiebot.
Raw Data
{
"domain": "consentcdn.cookiebot.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://consentcdn.cookiebot.com/sdk/bc-v4.min.html",
"https://consentcdn.cookiebot.com/consentconfig/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/settings.json"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"xhr",
"document"
]
}Detail
1 request(s) to js-eu1.hs-scripts.com (unknown).
Remediation
Ensure these scripts respect consent preferences and don't load tracking functionality before consent is given.
Raw Data
{
"domain": "js-eu1.hs-scripts.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-scripts.com/139580736.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
2 request(s) to kokkeloren-snack-runner.kokkeloren.workers.dev (unknown).
Remediation
No privacy action required - this appears to be first-party functionality.
Raw Data
{
"domain": "kokkeloren-snack-runner.kokkeloren.workers.dev",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://kokkeloren-snack-runner.kokkeloren.workers.dev/user/subscription",
"https://kokkeloren-snack-runner.kokkeloren.workers.dev/user/subscription"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"fetch"
]
}Detail
1 request(s) to js-eu1.hs-banner.com (unknown).
Remediation
Ensure any marketing banners or popups respect visitor consent preferences.
Raw Data
{
"domain": "js-eu1.hs-banner.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-banner.com/v2/139580736/banner.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
1 request(s) to js-eu1.hs-analytics.net (unknown).
Remediation
Configure to respect analytics consent - these should not collect data before consent is given.
Raw Data
{
"domain": "js-eu1.hs-analytics.net",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-analytics.net/analytics/1773741600000/139580736.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
1 request(s) to tr6.snapchat.com (unknown).
Remediation
Part of Snapchat tracking suite - address through overall Snapchat consent configuration.
Raw Data
{
"domain": "tr6.snapchat.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://tr6.snapchat.com/p"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"ping"
]
}Detail
Found Google Ads (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Review your Google Tag Manager setup and ensure Google Ads tags only fire after explicit consent. Consider disabling remarketing entirely if you don't actively use it, or implement consent-conditional triggers in GTM.
Legal Reference
GDPR Art. 6 & 7, ePrivacy Directive Art. 5(3)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "googleadservices\\.com"
}Detail
Found DoubleClick (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Remove DoubleClick tracking from your Google Tag Manager or ensure it only fires after explicit advertising consent. If you need display advertising, consider privacy-focused alternatives or use Google's consent mode to prevent tracking without consent.
Legal Reference
GDPR Art. 6 & 7, CNIL v. Google (2022)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "doubleclick\\.net"
}Detail
1 request(s) to pagead2.googlesyndication.com (Display advertising network).
Remediation
Verify if this request only fires after advertising consent. Even non-personalized ads can collect personal data like IP addresses. Consider implementing server-side tagging or consent-conditional loading to prevent pre-consent data collection.
Legal Reference
ePrivacy Directive Art. 5(3), GDPR Art. 6
Raw Data
{
"domain": "pagead2.googlesyndication.com",
"vendor": "Google",
"purpose": "Display advertising network",
"sample_urls": [
"https://pagead2.googlesyndication.com/ccm/collect?frm=0&ae=g&en=page_view&dl=https%3A%2F%2Fkokkeloren.no%2F&scrsrc=sgtm.kokkeloren.no&rnd=304689588.1773750048&navt=n&npa=1&us_privacy=1---&ep.ads_data_"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"fetch"
]
}Detail
1 request(s) to o463742.ingest.us.sentry.io (Error monitoring and performance tracking) — PII detected: name in POST body.
Remediation
Configure Sentry to exclude personal data from error reports using data scrubbing rules, or switch to an EU-hosted error monitoring service like Bugsnag EU or self-hosted solutions.
Legal Reference
GDPR Art. 44-49, Schrems II
Raw Data
{
"domain": "o463742.ingest.us.sentry.io",
"vendor": "Sentry",
"purpose": "Error monitoring and performance tracking",
"sample_urls": [
"https://o463742.ingest.us.sentry.io/api/4508449385807872/envelope/?sentry_version=7&sentry_key=6324798c673cf01315a26377634bb817&sentry_client=sentry.javascript.nextjs%2F9.10.0"
],
"pii_detected": [
"name in POST body"
],
"request_count": 1,
"resource_types": [
"fetch"
]
}Detail
Found Google Tag Manager (Google) loading from https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1. Purpose: Tag management system that can load any tracking script.
Remediation
Audit all tags configured in GTM container GTM-N8S3TGCP to ensure no unauthorized tracking. Consider replacing with EU-hosted tag management or implementing tags directly with proper consent controls.
Legal Reference
GDPR Art. 28, Schrems II
Raw Data
{
"vendor": "Google",
"purpose": "Tag management system that can load any tracking script",
"category": "analytics",
"script_src": "https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1",
"gdpr_concern": "Container may include any number of tracking tags, often without the site owner's full awareness.",
"tracker_name": "Google Tag Manager",
"data_collected": [
"depends on configured tags"
]
}Detail
GTM container GTM-N8S3TGCP is loaded on this page. It acts as a hub that can load any number of tracking tags.
Remediation
Log into Google Tag Manager and review all active tags in container GTM-N8S3TGCP. Ensure each tag has proper consent triggers and complies with GDPR requirements.
Legal Reference
GDPR Art. 5(1)(a)
Raw Data
{
"container_id": "GTM-N8S3TGCP"
}Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "Cloudflare",
"purpose": "necessary",
"http_only": true,
"same_site": "None",
"cookie_name": "__cf_bm",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "Cloudflare",
"purpose": "necessary",
"http_only": true,
"same_site": "None",
"cookie_name": "__cf_bm",
"cookie_domain": "hubspot.com",
"is_long_lived": false,
"is_third_party": true
}Detail
1 request(s) to www.googletagmanager.com (Tag management system that can load any tracking script).
Remediation
This is expected behavior for GTM. Address by auditing the GTM container contents and ensuring proper data processing agreements with Google.
Legal Reference
GDPR Art. 28
Raw Data
{
"domain": "www.googletagmanager.com",
"vendor": "Google",
"purpose": "Tag management system that can load any tracking script",
"sample_urls": [
"https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
Found Microsoft Clarity (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Remove Microsoft Clarity from your Google Tag Manager configuration, or implement explicit consent that only loads Clarity after visitors specifically agree to session recording. Consider privacy-friendly alternatives like self-hosted analytics or heat mapping tools that don't send data to third parties.
Legal Reference
GDPR Art. 6 (lawful basis), GDPR Art. 7 (consent), ePrivacy Directive Art. 5(3)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "clarity\\.ms"
}Detail
Found Snapchat Pixel (Snap Inc.) loading from https://sc-static.net/scevent.min.js. Purpose: Conversion tracking for Snapchat ads.
Remediation
Remove the Snapchat Pixel script or implement server-side conversion tracking that doesn't expose visitor data. If you must track Snapchat ad performance, use Snapchat's Conversions API with your own server as intermediary, or switch to privacy-focused analytics that don't share data with ad platforms.
Legal Reference
GDPR Art. 6 (lawful basis), Art. 13 (transparency), ePrivacy Directive Art. 5(3), Schrems II
Raw Data
{
"vendor": "Snap Inc.",
"purpose": "Conversion tracking for Snapchat ads",
"category": "advertising",
"script_src": "https://sc-static.net/scevent.min.js",
"gdpr_concern": "US data transfer for ad tracking.",
"tracker_name": "Snapchat Pixel",
"data_collected": [
"conversions",
"page views"
]
}Detail
1 request(s) to sc-static.net (Conversion tracking for Snapchat ads).
Remediation
Block all requests to sc-static.net by removing the Snapchat Pixel code from your website. If you need Snapchat conversion tracking, implement it only after obtaining explicit consent and consider using server-side alternatives.
Legal Reference
GDPR Art. 7 (consent), Art. 44-49 (international transfers), Schrems II
Raw Data
{
"domain": "sc-static.net",
"vendor": "Snap Inc.",
"purpose": "Conversion tracking for Snapchat ads",
"sample_urls": [
"https://sc-static.net/scevent.min.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
Tests which fonts are installed by measuring text rendering differences. Attributed to: https://kokkeloren.no/_next/static/chunks/2d1400c4-80e8491da2619b0b.js
Remediation
Remove or disable the font fingerprinting code in your Next.js application. Review the 2d1400c4-80e8491da2619b0b.js file to identify if this is from a third-party library or custom code. If you need font consistency, use web fonts loaded from your own servers instead of detecting system fonts.
Legal Reference
ePrivacy Directive Art. 5(3), GDPR Art. 6
Raw Data
{
"technique": "font",
"match_count": 2,
"source_script": "https://kokkeloren.no/_next/static/chunks/2d1400c4-80e8491da2619b0b.js",
"patterns_matched": [
"measureText\\s*\\(.*?\\).*?width",
"fontFamily.*?(?:serif|sans-serif|monospace).*?fontFamily"
]
}