3 new service-vertical combos + Cobalt/HackerOne alternatives + brand-consistency sweep

New service-vertical combo pages

Three SEO landing pages added to the COMBOS catalog (previously 12, now 15):

• /cybersecurity-for-saas — every B2B SaaS over $50k ARR needs SOC 2 + pentest evidence. Multi-tenant isolation testing, RLS bypass coverage, JWT scope leak detection, and Vanta/Drata complementarity framing. Targets "SaaS pentest" / "SaaS SOC 2 readiness" / "B2B SaaS security audit" search intent.
• /software-for-fintech — payment rails, double-entry ledgers, KYC/AML wiring, BaaS plumbing (Unit / Treasury Prime / Increase / Column / Synapse). Honest about what we are not (money transmitter, bank, compliance counsel) and what we are (the engineering layer underneath the regulatory wrapper). Targets "fintech development agency" / "payment integration" / "BaaS plumbing" search.
• /cybersecurity-for-ecommerce — PCI scope reduction, account-takeover defense, headless-storefront pentest, bot/scrape mitigation, Black-Friday-grade load testing. For DTC brands on Shopify Plus or moving to Hydrogen. Targets "ecommerce pentest" / "PCI DSS pentest" / "Shopify security audit" search intent.

All three follow the existing combo schema with real industry stats (IBM Cost of a Data Breach 2024, The Clearing House + Nacha 2023, Verizon DBIR 2024), honest qualifiers, and SKU prices matching skus.ts.

New alternative-comparison landing pages

Two dedicated /alternatives entries for the pentest-as-a-service platforms most cyber buyers evaluate:

• /alternatives/cobalt-io — Cobalt.io's PtaaS vs our fixed-price pentest with remediation included.
• /alternatives/hackerone — HackerOne's bug-bounty + pentest hybrid vs our private fixed-scope engagement.

Both follow the same shape as the existing 6 alternatives (Toptal, Upwork, DesignJoy, Lemon.io, Webstacks, BairesDev). Total 8 alternatives now in the sitemap.

/compare gains a cybersecurity buyer-intent group

/compare had Cobalt.io and HackerOne in its underlying NON_HAYAITI data but silently omitted both from the visible buyer-intent groups — visitors couldn't see them. New "Buying a pentest or bug-bounty platform?" group surfaces both. Subtitle count corrected from "Twelve" to "Fourteen real alternatives". Metadata keywords now include "Cobalt.io alternative", "HackerOne alternative", "PtaaS comparison".

Brand consistency sweep across paid-ad LP unfurls

Audited all 22 /lp/*/opengraph-image.tsx for palette mismatches against their LP page accent. Found 8 mismatches — when a prospect shared, e.g., /lp/founders-deal (orange-themed) on Slack, the unfurl card was slate-grey, breaking visual continuity. All 8 fixed: founders-deal slate→orange, abandoned-checkout rose→violet, comparison-shoppers violet→sky, ecommerce-brands rose→violet, embedded-team indigo→sky, pentest rose→violet, returning-visitor amber→violet, trading-bot amber→violet.

Day-14 nurture email price drift fix

nurture-day14.ts (the honest "we won't keep emailing" closer) listed SKU prices that had drifted from the catalog: Pentest at $9,500+/2wk (actual: $14,995/21d), Embedded at $12k/mo (actual: $5,995), MVP at $25k flat (actual: $19,995). Also included a phantom "Performance sprint" SKU that doesn't exist in skus.ts. All aligned; Marketing Site added to round out the menu.

Why this matters

Cybersecurity-for-SaaS and Software-for-Fintech are two of the largest under-served addressable markets in our SEO surface — every B2B SaaS hits the SOC 2 + pentest wall around their first enterprise deal, and fintechs need engineering that understands the regulatory wrapper without pretending to be the regulatory wrapper. Cobalt and HackerOne are the two pentest platforms cyber buyers compare against most. The palette + email drift fixes are smaller polish items but matter when prospects share us with their team or compare email content to the public pricing page.