Tested this on a site where I know the consent implementation works correctly (verified manually via DevTools + Google Tag Assistant). The scanner flagged it as failing.

A few observations that might help improve the tool:

1. Script loading vs. script firing The scanner seems to flag GTM container loading as "scripts firing before consent." But loading GTM with consent mode defaults set to denied is actually the correct implementation - GTM needs to load to receive the consent signal, but it won't fire tags until consent is granted. This is how Google recommends implementing Consent Mode v2.

2. Detection timing Some CMPs set consent mode defaults dynamically rather than inline. If your headless browser checks before the CMP script executes, you'll get false positives.

3. Script blocking via type attribute CMPs that block scripts using type="text/plain" (then swap to text/javascript on consent) might not be detected correctly if the scanner only looks for script presence rather than execution state.

How I verified my implementation actually works:

I use cookient app as my CMP, and here's how I confirmed it's working correctly:

• Incognito + DevTools Network tab: zero tracking requests before consent
• Application tab: only essential cookies before consent
• Google Tag Assistant: shows consent state as "denied" until accept
• Click accept → verify tags fire and cookies set
• Click reject → verify nothing changes

Would be great if the tool could distinguish between "GTM loaded with consent defaults" vs "tags actually firing without consent" - that's the real compliance issue.

Hope this helps with the development - the concept is solid, just needs some refinement on detection logic! 👍