WebTrustEngine R50
ENTR
EVIDENCE-FIRST WEB GOVERNANCE

Web governance, proven by evidence.

WebTrustEngine R50 reviews corporate web properties across ten governance domains, connects findings to evidence, turns approved changes into reversible deliverables and separates file-level readiness from live verification.

R50 NUMBER CONTRACTCatalog scope ≠ automated check count2.033REFERENCE CATALOG ITEMSClassified totalreference scopeNOT THE SAME319IMPLEMENTED DETECTABLECHECKS80 core +239 granular checksCLASSIFIED ACROSS 10 GOVERNANCE DOMAINSR5001Security02TLS·HTTPS03Technical SEO04Structured Data05Accessibility06Performance07AI·GEO·AEO08Privacy09Code Security10Delivery80 Core Checks · 239 Granular Checks · 68 Security Patterns26 SafeFix Generators · 21 Runtime Verification Bridges24 External Action Recipes · Roadmap 0EVIDENCE CHAINSHA-256 · manifest · diff report · rollback plane3b0c442⁒52b8 · 9f4a17be⁒c1d7 · b7e2ac09⁒03aa01REVIEW02SAFE FIX03BUILD04DEPLOY-VERIFYR50 NUMBER CONTRACT2.033REFERENCE CATALOG ITEMSClassified total reference scopeNOT THE SAME319IMPLEMENTED DETECTABLE CHECKS80 core + 239 granular checksACROSS 10 GOVERNANCEDOMAINSR500102030405060708091001 Security02 TLS·HTTPS03 Technical SEO04 Structured Data05 Accessibility06 Performance07 AI·GEO·AEO08 Privacy09 Code Security10 DeliveryR50 NUMBER ARCHITECTURE80 Core Checks239 Granular Checks68 Security Patterns26 SafeFix Generators21 Runtime Verification Bridges24 External Action RecipesRoadmap 0EVIDENCE CHAINSHA-256 · manifest · diff · rollback01REVIEW02SAFE FIX03BUILD04DEPLOY-VERIFY

WHY GOVERNANCE?

The web is no longer a one-off project

Customer value cards: eight concrete values from risk reduction to live verification.

A website is now a human storefront plus a machine surface.

The page a visitor sees is simultaneously the input of dozens of automated readers. A page flawless for humans can carry missing headers, broken schemas and unclear identity signals for machines.

Even with great design, machine readability can be weak.

WHAT IS R50?

The engine's 50th release cycle — every claim accounted for

R50 is WebTrustEngine's public capability set. Its distinguishing trait is number discipline: the 2,033-item reference catalog and the 319 working checks are deliberately kept apart; no figure is inflated.

NUMBER CONTRACT
2,033
reference catalog
not automated checks
NUMBER CONTRACT
319
working checks
80 core + 239 granular
R50
68
security patterns
static detection
R50
26
SafeFix generators
reversible
R50
21
runtime bridges
bind to live tools
R50
24
external recipes
platform actions
CATALOG
7
status classes
IMPLEMENTED · RUNTIME · EXTERNAL · CONDITIONAL · MANUAL · N-A

Claim safety

2,033 is not a check count; it is a signal map. The working check layer is 319, counted from code.

FOUR MODES

Review → SafeFix → Build → Deploy-Verify

Each mode produces its own evidence; no mode issues a live pass.

  1. Review

    An evidenced baseline without touching a file: 10-domain score plus classified findings.

    score + findings
  2. SafeFix

    Low-risk fixes in a working copy; every change is written to a manifest.

    fix manifestreversible
  3. Build

    A schema-ready static surface: meta, canonical, hreflang, JSON-LD, accessibility skeleton.

    static surfacereversible
  4. Deploy-Verify

    Post-upload live header pulls and independent-tool recipes; producing files is not enough.

    live proof

The 10-domain score model

Each domain with its one-line scope; evidence, sample findings and boundaries live on the Score Model page.

01

Security Headers

HSTS · CSP · nosniff

02

TLS / HTTPS

encrypted transport

03

Technical SEO

meta · canonical · sitemap

04

Structured Data

JSON-LD identity

05

Accessibility

alt · label · heading

06

Performance

static readiness

07

AI / GEO / AEO

readability

08

Privacy / Cookie

tracker visibility

09

Code Security

secrets · exposure · patterns

10

Delivery

deployment hygiene

Go deep on every domain →

SAFEFIX

Not a rebuild — a safe improvement

Evidence package visual of six deliverable cards.
The SafeFix evidence package: six delivery items.

The evidence package: files, not a score

A changed-files list, a rollback manifest and a before/after score ship together. Every change reverts in a single step.

See the process
changed_filesFlat list of every touched path.
fix_manifestPer-file before/after hashes.
rollback_manifestThe single-step way back.
diffEach change in context.
score_pairBefore/after on one ruler.
run_logDate · file set · engine seal.

DEPLOY-VERIFY

Producing files is not enough

Upload, cache purge, live header pulls and independent-tool recipes: evidence completes in production.

Seven-step deployment verification flow.
The Deploy-Verify loop: seven steps from upload to the diff report.
  • Live header pull
  • robots/sitemap live
  • OG card refresh
  • Search Console submit
  • SSL Labs run

SECURITY BOUNDARY

Not a pentest — and it says so

The security boundary: static review is engine work; active testing needs separate authorization and scope.

A static security review is security analysis over source, configuration and output files without touching the target system. WebTrustEngine's security layer stays within this definition and has four blocks: secret scan (key/password/token leakage), exposed files (.env, backups, .git, config exposure), client-side risky patterns (eval, document.write, dangerous sinks) and server-side SAST classifications (SQLi/command/traversal/deserialization/SSRF/XXE markers).

SCA/CVE logic accompanies these: risky ranges of known library versions are flagged; but no 'this version is exploitable' claim is made — the flag binds to an update recipe. CSP/HSTS readiness and OWASP mapping put findings into a shared language.

When is it not a pentest? Always — in this product. No active payloads, no live port scans, no authentication-bypass attempts, no exploit generation. Any DAST-class behaviour requires written authorization, ownership verification and a separate scope document. This legal and ethical boundary is not a weakness; it is trust discipline: the client knows exactly what they bought and what must be ordered separately.

  • secret scan
  • exposed files
  • JS sink patterns
  • SCA/CVE flags
  • CSP/HSTS readiness
  • OWASP mapping
  • DAST = authorization + scope

Boundary

Active testing requires written authorisation; the engine offers static security review.

EVIDENCE HUB

Documents ship with SHA-256

EVIDENCE LEDGER — PREVIEWSHA-256
Public Capability GuideWEBTRUSTENGINE_R50_PUBLIC_CAPABILITY_GUIDE_v3.6.pdf
62 pgPDF593c101f52550f7131860a42…Download
Executive BriefWEBTRUSTENGINE_R50_EXECUTIVE_BRIEF_v3.6.pdf
13 pgPDF9a66ef5f0c1d099ea39f1e44…Download
Technical Trust NoteWEBTRUSTENGINE_R50_TECHNICAL_TRUST_NOTE_v3.6.pdf
12 pgPDFea881df50194d9d80184a4f0…Download
One-PagerWEBTRUSTENGINE_R50_ONE_PAGER_EN_v3.6.pdf
1 pgPDFe4b10789b2f2d51417c33226…Download

Open the full ledger →

VISUAL SYSTEM

The brand speaks its own visual language

Dark navy executive dashboard with three decision cards on top and a ten-domain strip below.Five-layer AI readability stack.Five-step managed service process.Capability map of six large stat cards.Two panels separating static review from authorization-required active testing.Four-step bridge flow diagram.Four-stage content system flow.Five-step technical handoff flow.

Brand Center: 40+40 visuals, 24 banner sizes, logos →

The governance loop

Governance Loop

Four modes + Deploy-Verify

01

Review

evidenced baseline

02

SafeFix

reversible package

03

Build

new static surface

04

Monitor

periodic evidence

05

Deploy-Verify

live-effect proof

No guarantees — readiness, evidence and verification. Number contract: 2,033 reference catalog · 319 working checks.

Circular loop of four modes with a Deploy-Verify node at the center.
The governance loop: Review, SafeFix, Build and Monitor around a Deploy-Verify core.

WHO USES IT

Who uses it, and when?

Four typical moments: an evidence-based snapshot before a corporate site renewal; independent acceptance of an agency delivery; a recurring governance round; and quick due diligence before a merger or transfer.

The full use-case set lives on the Review page

Critical questions — quick answers

Q: What can it see without touching the live site?

A: All in-file signals in ZIP/local input: meta, schema, header readiness, accessibility markers, static security patterns.

Full answer in the FAQ

Q: ZIP vs live-URL analysis?

A: ZIP shows file truth; live URL shows response truth; headers and redirects finalize only live.

Full answer in the FAQ

Q: What if the site breaks after SafeFix?

A: The rollback manifest reverts in one step; the backup dir ships in the package.

Full answer in the FAQ

Q: How is the rollback manifest used?

A: Copy files back from the backup dir; the changed/created lists guide you.

Full answer in the FAQ

Q: Which changes need human approval?

A: Meaning-changing content, brand/voice decisions, legal text and the publish decision.

Full answer in the FAQ

Q: Why isn't the 2,033 catalog automated checks?

A: The catalog is a signal map; a check is code the engine runs. The two are deliberately separate.

Full answer in the FAQ

Q: Why is 319 the more accurate number?

A: Counted from code, consistent with the code-level count, and free of inflation.

Full answer in the FAQ

Q: What ROADMAP=0 is not?

A: Not 'everything automated'; every item attached to its correct artifact class.

Full answer in the FAQ

Ready for the first review?

Get an evidenced baseline without touching a file; scope and quotes are settled via contact — pricing is not published on this site.