Skip to content
Free Tool Arena

Changelog

What's new

Recent updates to the site — new tools, fixes, security improvements, content drops. Most recent first.

Last update May 4, 2026
100% in-browserNo downloadsNo sign-upMalware-freeHow we keep this safe →

We ship frequently — usually multiple times a week — so this page captures the parts that matter to readers. Engineering minutia lives in the commit history; this page covers anything you'd actually notice as a user.

Want a feed-friendly version? Subscribe to /feed.xml in any RSS reader.

  1. Security

    Self-hosted PDF + GIF workers, more glossary

    PDF tools and the GIF maker now load their workers from this site instead of a third-party CDN. Removes a supply-chain attack surface and a third-party DNS lookup per first PDF use.

    • 14 PDF tools + GifMaker switched to self-hosted workers
    • CSP tightened to drop cdnjs.cloudflare.com
    • 8 new glossary entries (Docker, Kubernetes, CI/CD, CORS, XSS, CSRF, plus earlier additions: HTTPS, TLS, SSL, DNS, CDN, OAuth, JWT, API)
  2. Fix

    Dark-mode form-control fix, region-aware currency converter

    Dark-mode inputs across many tools were rendering with browser defaults — dark text on dark background, invisible while typing. Fixed site-wide. Currency converter now defaults the destination side based on your region (USD anchor, your local currency on the other side).

    • Global dark-mode rule for input/textarea/select
    • CurrencyConverter detects locale → defaults to USD → user's local currency
    • Game stats double-increment bug fixed (TicTacToe, Hangman, 2048)
    • Game2048 + Snake now playable on mobile (swipe controls)
    • Calculator results now announce to screen readers (aria-live)
  3. New

    SEO infrastructure: i18n schema, RSS feed, OpenSearch

    Spanish-language pages now emit correct localized JSON-LD with proper inLanguage tags. Bidirectional hreflang on the index pages. New RSS feed for guides at /feed.xml; browsers can now add Free Tool Arena as a search engine via /opensearch.xml.

    • Localized BreadcrumbList + JSON-LD on /es pages
    • Bidirectional hreflang on /, /tools, /guides
    • /feed.xml — RSS 2.0 of recent guides
    • /opensearch.xml — browser search-engine integration
    • Per-section sitemaps now use stable lastmod (was resetting on every crawl)
    • Search Console verification meta for Google + Yandex + Baidu (env-driven)
  4. Security

    Security sweep + /ads.txt fix

    Closed XSS surfaces in 5 generator tools (Apology Letter, Email Signature, YouTube Embed, Markdown Preview, HTML Table). pdfjs-dist CVE-2024-4367 mitigated across all 14 PDF tools via Mozilla's recommended isEvalSupported:false flag. /ads.txt now serves correctly (Google AdSense's ads.txt crawler doesn't follow 301s; the www→apex redirect was breaking it).

    • Stored-XSS fixed in ApologyLetterGenerator + Markdown URL allowlist
    • EmailSignatureBuilder + YoutubeEmbedGenerator + HtmlTableGenerator escape user input
    • PDF.js CVE-2024-4367 mitigation applied
    • /ads.txt routing fix
    • 12 broken /tools/<slug> hrefs in guides repaired
    • 11 brand-domain typos (freetoolarea.com → freetoolarena.com) fixed
  5. New

    Games hub + 10-phase SEO hardening

    New /games hub for browser games (snake, 2048, tic-tac-toe, hangman, memory, reaction, word puzzles, board games, Pong). 10-phase SEO sweep: dedicated /sitemap-games.xml, Game schema, BreadcrumbList everywhere, hreflang setup, per-section cache headers.

    • 20 browser games at /games
    • Game schema (VideoGame + SoftwareApplication dual @type)
    • Dedicated /sitemap-games.xml + robots.ts entry
    • Internal-link auto-linker extended with 56 wave 87-96 patterns
    • 778 tools live across 21 categories

That's the recent surface. The full commit history lives on GitHub. Spotted a regression or want to suggest a tool? Get in touch.