What it checks:
Exposed API keys, tokens, JWT handling issues
CORS misconfigurations and overly permissive cross-origin trust
missing/weak security headers (CSP, HSTS, etc.)
cookie security posture
sensitive data leaking via local/session storage
query/URL leaks and client-side state exposure
source maps and build artifacts left exposed
endpoint patterns from observed traffic
Design Token Extractor is a Chrome extension that lets you instantly pull design system tokens from any live website.
Instead of manually inspecting styles or digging through dev tools, you can extract:
• Colors
• Typography (fonts, sizes, weights)
• Spacing and layout values
It’s built for developers and designers who want to quickly understand, replicate, or audit a design system without wasting time.
TrevnoctillaFree PDF editing — simple, fast, mobile-friendly.
