Any link on your site that opens in a new tab (target="_blank") without rel="noopener" gives that new tab partial JavaScript access back to your original page — a malicious destination site can use this to silently redirect your original tab to a phishing page while the visitor is looking at the new one ("tab-nabbing").
A link with target="_blank" but no rel="noopener" gives the page it opens partial control over your original tab via window.opener — a real technique used to redirect your original tab to a phishing page while the visitor looks at the new one.
Every target="_blank" link on your site includes rel="noopener".
Fix it, then re-scan — the check confirms itself. No manual checkbox, the scan is the truth.
Run this check in H.I.V.E. →