https://kokkeloren.no/
Severe privacy issues requiring immediate attention
40
Trackers Found
15
Cookies
121
Network Requests
9.0s
Load Time
Kokkeløren.no has a comprehensive tracking infrastructure with CookieBot consent management, but critical configuration failures expose the business to significant GDPR enforcement risk. The site immediately activates extensive tracking from Snapchat, Google, HubSpot, and Microsoft without visitor consent, including sending personal data (names, emails) to US servers. While the technical foundation for compliance exists, the current setup violates core GDPR consent requirements and recent EU case law on international data transfers.
Critical Actions:
Detail
Found 13 tracking cookie(s) and 1 tracking request(s) BEFORE any consent interaction. This is the most common GDPR violation.
Remediation
Configure CookieBot to block ALL tracking cookies and requests until visitors actively consent. Ensure Google Analytics, marketing pixels, and any other trackers only load after consent is given.
Legal Reference
GDPR Art. 5(1)(a), ePrivacy Directive Art. 5(3), CNIL v. Google (Jan 2022)
Raw Data
{
"tracking_cookies_before_consent": 13,
"tracking_requests_before_consent": 1
}Detail
The consent banner has no visible 'reject' or 'decline' button. Under GDPR, rejecting cookies must be as easy as accepting them.
Remediation
Add a prominent 'Reject All' button that's equally visible as your 'Accept' button. Configure CookieBot to show both options with equal visual weight and accessibility.
Legal Reference
GDPR Art. 7, Planet49 ruling (CJEU Oct 2019), EDPB Guidelines 05/2020
Raw Data
{
"reject_button_found": false
}Detail
Found CookieBot CMP (CookieBot (Usercentrics)) loading from https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false. Purpose: Cookie consent management platform.
Remediation
Verify CookieBot is configured to block all non-essential tracking until consent is given, and that it provides equal accept/reject options.
Legal Reference
GDPR Art. 7
Raw Data
{
"vendor": "CookieBot (Usercentrics)",
"purpose": "Cookie consent management platform",
"category": "consent",
"script_src": "https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false",
"gdpr_concern": "Consent management tool.",
"tracker_name": "CookieBot CMP",
"data_collected": [
"consent preferences"
]
}Detail
2 request(s) to consent.cookiebot.com (Cookie consent management platform).
Remediation
No action needed - these requests are necessary for consent management functionality.
Raw Data
{
"domain": "consent.cookiebot.com",
"vendor": "CookieBot (Usercentrics)",
"purpose": "Cookie consent management platform",
"sample_urls": [
"https://consent.cookiebot.com/uc.js?cbid=722d4d5b-d6d6-4159-8ee4-e23e6a44b532&implementation=gtm&consentmode-dataredaction=dynamic",
"https://consent.cookiebot.com/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/cc.js?renew=false&referer=kokkeloren.no&dnt=false&init=false"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"script"
]
}Detail
Cookie consent banner powered by Custom consent banner (Custom) is present on the page.
Remediation
Ensure the banner provides clear choices and blocks tracking until consent is given (see priority issues above).
Legal Reference
GDPR Art. 7
Raw Data
{
"cmp": "Custom consent banner",
"vendor": "Custom"
}Detail
4 request(s) to tr.snapchat.com (unknown) — PII detected: name in POST body, e in POST body.
Remediation
Remove Snapchat Pixel entirely or configure it to only fire after explicit marketing consent. Ensure no PII is ever sent to third-party advertisers without consent.
Legal Reference
GDPR Art. 6, 7; ePrivacy Directive Art. 5(3)
Raw Data
{
"domain": "tr.snapchat.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://tr.snapchat.com/config/no/1d31ab17-414f-451d-8894-ae8da4c42eca.json?v=3.54.2-2603162155",
"https://tr.snapchat.com/cm/i?pid=1d31ab17-414f-451d-8894-ae8da4c42eca&u_scsid=7885537a-9d5f-4927-9d1a-492f4be9141d&u_sclid=cc74eddf-01d1-4caf-96a5-4db4e9f5615a",
"https://tr.snapchat.com/p",
"https://tr.snapchat.com/p"
],
"pii_detected": [
"name in POST body",
"e in POST body"
],
"request_count": 4,
"resource_types": [
"fetch",
"document",
"ping"
]
}Detail
1 request(s) to track-eu1.hubspot.com (unknown) — PII detected: ln (URL parameter).
Remediation
Configure HubSpot to only activate after explicit consent for analytics. Consider self-hosted analytics alternatives like Matomo or privacy-focused options like Plausible.
Legal Reference
Schrems II; GDPR Art. 44-49
Raw Data
{
"domain": "track-eu1.hubspot.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://track-eu1.hubspot.com/__ptq.gif?k=1&sd=1920x1080&cd=24-bit&cs=UTF-8&ln=nb-no&v=1.1&a=139580736&pu=https%3A%2F%2Fkokkeloren.no%2F&t=Matkasse+fra+Kokkel%C3%B8ren&cts=1773752102947&vi=205c8b4ec02"
],
"pii_detected": [
"ln (URL parameter)"
],
"request_count": 1,
"resource_types": [
"image"
]
}Detail
Third-party cookie from sc-static.net, expires: 0 days, purpose: Unrecognized cookie.
Remediation
Identify the purpose of this cookie or remove it. All cookies must have a clear purpose and legal basis under GDPR.
Legal Reference
GDPR Art. 5(1)(a), 13
Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "None",
"cookie_name": "X-AB",
"cookie_domain": "sc-static.net",
"is_long_lived": false,
"is_third_party": true
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Snapchat conversion tracking cookie.. Vendor: Snap Inc..
Remediation
Configure Snapchat tracking to only set cookies after explicit marketing consent. Consider if Snapchat advertising is essential - organic social media doesn't require tracking.
Legal Reference
ePrivacy Directive Art. 5(3); GDPR Art. 7
Raw Data
{
"expiry": "1 years",
"secure": false,
"vendor": "Snap Inc.",
"purpose": "marketing",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_scid",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 1 years, purpose: Snapchat conversion tracking cookie (restricted).. Vendor: Snap Inc..
Remediation
Same as _scid cookie - only allow after explicit marketing consent. Audit why both Snapchat cookies are needed.
Legal Reference
ePrivacy Directive Art. 5(3); GDPR Art. 7
Raw Data
{
"expiry": "1 years",
"secure": false,
"vendor": "Snap Inc.",
"purpose": "marketing",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_scid_r",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Raw Data
{
"expiry": "session",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "None",
"cookie_name": "_cfuvid",
"cookie_domain": "hubspot.com",
"is_long_lived": false,
"is_third_party": true
}Detail
First-party cookie from kokkeloren.no, expires: 5 months, purpose: HubSpot visitor tracking cookie.. Vendor: HubSpot.
Remediation
Configure HubSpot tracking to only activate after analytics consent. Consider if HubSpot's full tracking suite is necessary or if lighter analytics would suffice.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "5 months",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hstc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 5 months, purpose: HubSpot user token for visitor identification.. Vendor: HubSpot.
Remediation
Ensure this cookie only sets after explicit consent for analytics/marketing. Consider shorter retention periods to minimize privacy impact.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "5 months",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "hubspotutk",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: session, purpose: HubSpot session reset detection.. Vendor: HubSpot.
Remediation
Ensure HubSpot only activates after analytics consent. This cookie is part of HubSpot's broader tracking suite.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "session",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hssrc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 0 days, purpose: HubSpot session tracking.. Vendor: HubSpot.
Remediation
Part of HubSpot's analytics suite - ensure it only activates after consent for analytics tracking.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"expiry": "0 days",
"secure": false,
"vendor": "HubSpot",
"purpose": "analytics",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__hssc",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "Lax",
"cookie_name": "__client",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__client_uat",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Raw Data
{
"expiry": "1 years",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "__client_uat_rj7vSR9-",
"cookie_domain": "kokkeloren.no",
"is_long_lived": true,
"is_third_party": false
}Detail
First-party cookie from clerk.kokkeloren.no, expires: session, purpose: Unrecognized cookie.
Remediation
Verify with Clerk documentation what this cookie does. If it's essential for security/functionality, document this in your privacy policy.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "session",
"secure": true,
"vendor": "unknown",
"purpose": "unknown",
"http_only": true,
"same_site": "None",
"cookie_name": "_cfuvid",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
First-party cookie from kokkeloren.no, expires: 6 days, purpose: Unrecognized cookie.
Remediation
Identify this cookie's purpose or remove it. All cookies must have documented purposes and appropriate consent.
Legal Reference
GDPR Art. 13
Raw Data
{
"expiry": "6 days",
"secure": false,
"vendor": "unknown",
"purpose": "unknown",
"http_only": false,
"same_site": "Lax",
"cookie_name": "_ScCbts",
"cookie_domain": "kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Detail
4 request(s) to policy.app.cookieinformation.com (unknown).
Remediation
Ensure Cookie Information's consent manager blocks all non-essential cookies and scripts until visitors provide consent.
Raw Data
{
"domain": "policy.app.cookieinformation.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://policy.app.cookieinformation.com/uc.js",
"https://policy.app.cookieinformation.com/cookie-data/kokkeloren.no/cabl.json",
"https://policy.app.cookieinformation.com/cookiesharingiframe.html",
"https://policy.app.cookieinformation.com/latest/66273/en.js"
],
"pii_detected": [],
"request_count": 4,
"resource_types": [
"xhr",
"document",
"script"
]
}Detail
2 request(s) to consentcdn.cookiebot.com (unknown).
Remediation
Choose one consent management platform. Running multiple consent systems can create technical issues and user confusion.
Raw Data
{
"domain": "consentcdn.cookiebot.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://consentcdn.cookiebot.com/sdk/bc-v4.min.html",
"https://consentcdn.cookiebot.com/consentconfig/722d4d5b-d6d6-4159-8ee4-e23e6a44b532/settings.json"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"xhr",
"document"
]
}Detail
1 request(s) to js-eu1.hs-scripts.com (unknown).
Remediation
Ensure HubSpot scripts only load after appropriate consent. EU hosting is positive but doesn't eliminate consent requirements.
Raw Data
{
"domain": "js-eu1.hs-scripts.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-scripts.com/139580736.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
2 request(s) to kokkeloren-snack-runner.kokkeloren.workers.dev (unknown).
Remediation
Ensure any personal data processed by Workers complies with your privacy policy and data processing agreements.
Raw Data
{
"domain": "kokkeloren-snack-runner.kokkeloren.workers.dev",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://kokkeloren-snack-runner.kokkeloren.workers.dev/user/subscription",
"https://kokkeloren-snack-runner.kokkeloren.workers.dev/user/subscription"
],
"pii_detected": [],
"request_count": 2,
"resource_types": [
"fetch"
]
}Detail
1 request(s) to js-eu1.hs-banner.com (unknown).
Remediation
Configure HubSpot banners to only show after marketing consent, or ensure they're used only for essential notifications.
Raw Data
{
"domain": "js-eu1.hs-banner.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-banner.com/v2/139580736/banner.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
1 request(s) to js-eu1.hs-analytics.net (unknown).
Remediation
Ensure HubSpot analytics only activates after consent and verify your data processing agreement covers EU data handling.
Raw Data
{
"domain": "js-eu1.hs-analytics.net",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://js-eu1.hs-analytics.net/analytics/1773741600000/139580736.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
1 request(s) to tr6.snapchat.com (unknown).
Remediation
Part of broader Snapchat tracking - ensure all Snapchat requests only occur after explicit marketing consent.
Raw Data
{
"domain": "tr6.snapchat.com",
"vendor": null,
"purpose": "unknown",
"sample_urls": [
"https://tr6.snapchat.com/p"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"ping"
]
}Detail
Found Google Ads (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Disable Google Ads tracking in Google Tag Manager until proper consent is obtained. Configure GTM triggers to only fire Google Ads tags after explicit advertising consent. Consider whether remarketing is necessary for your business model - many food delivery businesses succeed without behavioral advertising.
Legal Reference
GDPR Art. 6, ePrivacy Directive Art. 5(3), CNIL v. Google (Jan 2022)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "googleadservices\\.com"
}Detail
Found DoubleClick (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Remove DoubleClick tracking from your Google Tag Manager configuration immediately. If you need display advertising, consider privacy-focused ad networks that don't build cross-site profiles, or focus on contextual advertising that doesn't track individual users.
Legal Reference
GDPR Art. 6, ePrivacy Directive Art. 5(3), Belgian DPA v. Meta (Jan 2023)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "doubleclick\\.net"
}Detail
1 request(s) to pagead2.googlesyndication.com (Display advertising network).
Remediation
Audit your Google Tag Manager setup to identify which tags are triggering these Google advertising requests. Implement proper consent controls so these requests only happen after visitors explicitly agree to advertising cookies. The 'npa=1' parameter is good but insufficient for GDPR compliance.
Legal Reference
GDPR Art. 6, ePrivacy Directive Art. 5(3)
Raw Data
{
"domain": "pagead2.googlesyndication.com",
"vendor": "Google",
"purpose": "Display advertising network",
"sample_urls": [
"https://pagead2.googlesyndication.com/ccm/collect?frm=0&ae=g&en=page_view&dl=https%3A%2F%2Fkokkeloren.no%2F&scrsrc=sgtm.kokkeloren.no&rnd=819689416.1773752104&navt=n&npa=1&us_privacy=1---&ep.ads_data_"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"fetch"
]
}Detail
2 request(s) to o463742.ingest.us.sentry.io (Error monitoring and performance tracking) — PII detected: name in POST body, ln in POST body, e in POST body.
Remediation
Configure Sentry to exclude PII from error reports using beforeSend filtering, or switch to EU-hosted error monitoring like Bugsnag EU or self-hosted Sentry. Implement proper data processing agreements for any US-based service.
Legal Reference
GDPR Art. 5(1)(a) (lawfulness), Schrems II
Raw Data
{
"domain": "o463742.ingest.us.sentry.io",
"vendor": "Sentry",
"purpose": "Error monitoring and performance tracking",
"sample_urls": [
"https://o463742.ingest.us.sentry.io/api/4508449385807872/envelope/?sentry_version=7&sentry_key=6324798c673cf01315a26377634bb817&sentry_client=sentry.javascript.nextjs%2F9.10.0",
"https://o463742.ingest.us.sentry.io/api/4508449385807872/envelope/?sentry_version=7&sentry_key=6324798c673cf01315a26377634bb817&sentry_client=sentry.javascript.nextjs%2F9.10.0"
],
"pii_detected": [
"name in POST body",
"ln in POST body",
"e in POST body"
],
"request_count": 2,
"resource_types": [
"fetch"
]
}Detail
Found Google Tag Manager (Google) loading from https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1. Purpose: Tag management system that can load any tracking script.
Remediation
Audit all tags configured in your GTM container (GTM-N8S3TGCP). Ensure any tracking tags only load after proper consent. Consider moving to server-side tagging or a privacy-focused tag manager like Piwik PRO.
Legal Reference
GDPR Art. 25 (data protection by design)
Raw Data
{
"vendor": "Google",
"purpose": "Tag management system that can load any tracking script",
"category": "analytics",
"script_src": "https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1",
"gdpr_concern": "Container may include any number of tracking tags, often without the site owner's full awareness.",
"tracker_name": "Google Tag Manager",
"data_collected": [
"depends on configured tags"
]
}Detail
GTM container GTM-N8S3TGCP is loaded on this page. It acts as a hub that can load any number of tracking tags.
Remediation
Review and audit all active tags in GTM container GTM-N8S3TGCP. Implement consent-based firing for any non-essential tags. Document what data each tag collects for your privacy policy.
Legal Reference
GDPR Art. 13 (information to be provided)
Raw Data
{
"container_id": "GTM-N8S3TGCP"
}Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "Cloudflare",
"purpose": "necessary",
"http_only": true,
"same_site": "None",
"cookie_name": "__cf_bm",
"cookie_domain": "clerk.kokkeloren.no",
"is_long_lived": false,
"is_third_party": false
}Raw Data
{
"expiry": "0 days",
"secure": true,
"vendor": "Cloudflare",
"purpose": "necessary",
"http_only": true,
"same_site": "None",
"cookie_name": "__cf_bm",
"cookie_domain": "hubspot.com",
"is_long_lived": false,
"is_third_party": true
}Detail
1 request(s) to www.googletagmanager.com (Tag management system that can load any tracking script).
Remediation
This is expected behavior for GTM, but ensure your GTM configuration doesn't include unauthorized tracking. Consider implementing consent management to prevent GTM from loading tracking tags before consent.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"domain": "www.googletagmanager.com",
"vendor": "Google",
"purpose": "Tag management system that can load any tracking script",
"sample_urls": [
"https://www.googletagmanager.com/gtm.js?id=GTM-N8S3TGCP>g_health=1"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
Found Microsoft Clarity (via GTM) reference in GTM container GTM-N8S3TGCP. This tracker may fire based on container triggers.
Remediation
Remove Microsoft Clarity from your Google Tag Manager container or ensure it only loads after explicit consent for 'analytics cookies'. Configure Clarity to mask all form inputs and sensitive areas. Consider privacy-friendly alternatives like self-hosted session replay tools or focus on server-side analytics instead.
Legal Reference
GDPR Art. 6 (lawful basis), Art. 7 (consent conditions), ePrivacy Directive Art. 5(3)
Raw Data
{
"via": "raw_js_scan",
"container_id": "GTM-N8S3TGCP",
"detected_pattern": "clarity\\.ms"
}Detail
Found Snapchat Pixel (Snap Inc.) loading from https://sc-static.net/scevent.min.js. Purpose: Conversion tracking for Snapchat ads.
Remediation
Remove the Snapchat Pixel script or implement proper consent management that only loads the pixel after explicit user consent. Consider server-side conversion tracking or first-party analytics as privacy-friendly alternatives for measuring ad performance.
Legal Reference
GDPR Art. 6 (lawful basis), Art. 7 (consent conditions), ePrivacy Directive Art. 5(3), Schrems II
Raw Data
{
"vendor": "Snap Inc.",
"purpose": "Conversion tracking for Snapchat ads",
"category": "advertising",
"script_src": "https://sc-static.net/scevent.min.js",
"gdpr_concern": "US data transfer for ad tracking.",
"tracker_name": "Snapchat Pixel",
"data_collected": [
"conversions",
"page views"
]
}Detail
1 request(s) to sc-static.net (Conversion tracking for Snapchat ads).
Remediation
Block these requests until proper consent is obtained. Implement a consent management platform that prevents third-party requests from firing before user consent. Consider using Snapchat's Conversions API for server-side tracking instead.
Legal Reference
GDPR Art. 44-49 (international transfers), Schrems II ruling
Raw Data
{
"domain": "sc-static.net",
"vendor": "Snap Inc.",
"purpose": "Conversion tracking for Snapchat ads",
"sample_urls": [
"https://sc-static.net/scevent.min.js"
],
"pii_detected": [],
"request_count": 1,
"resource_types": [
"script"
]
}Detail
Tests which fonts are installed by measuring text rendering differences. Attributed to: https://kokkeloren.no/_next/static/chunks/2d1400c4-80e8491da2619b0b.js
Remediation
Remove the font fingerprinting code from your Next.js application. If you need font detection for legitimate purposes (like ensuring text displays correctly), use CSS font-display properties or web fonts served from your own domain instead of device fingerprinting.
Legal Reference
ePrivacy Directive Art. 5(3)
Raw Data
{
"technique": "font",
"match_count": 2,
"source_script": "https://kokkeloren.no/_next/static/chunks/2d1400c4-80e8491da2619b0b.js",
"patterns_matched": [
"measureText\\s*\\(.*?\\).*?width",
"fontFamily.*?(?:serif|sans-serif|monospace).*?fontFamily"
]
}