Test security features including Permissions Policy, cross-origin isolation, and Storage Access API.
Test loading HTTP resources (images, iframes, scripts) on an HTTPS page.
Test Permissions Policy: check which browser features are allowed or blocked.
Test cross-origin isolation: COOP, COEP, and SharedArrayBuffer availability.
Test the Storage Access API: check and request third-party storage access.
Test WebAuthn/FIDO2: platform authenticator, passkeys, and credential management.
Test third-party cookie behavior, CHIPS support, and storage partitioning.
Test Privacy Sandbox APIs: Topics, Protected Audience, Shared Storage, FedCM.
Check if your real IP address is exposed through WebRTC, even when using a VPN.
Test Referrer-Policy header values and their privacy impact.
Test Content Security Policy violations and the browser Reporting API.