diff --git a/.mokogitea/workflows/issue-branch.yml b/.mokogitea/workflows/issue-branch.yml
index 11958bd..a997a9b 100644
--- a/.mokogitea/workflows/issue-branch.yml
+++ b/.mokogitea/workflows/issue-branch.yml
@@ -5,7 +5,7 @@
 # FILE INFORMATION
 # DEFGROUP: Gitea.Workflow
 # INGROUP: mokocli.Automation
-# VERSION: 01.00.00
+# VERSION: 01.06.13
 # BRIEF: Auto-create feature branch when an issue is opened
 
 name: "Universal: Issue Branch"
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8b61150..d517b5f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,21 +1,42 @@
 # Changelog
 
-## [Unreleased]
-
-## [01.06.00] --- 2026-06-28
-
-
-## [01.06.00] --- 2026-06-28
-
-## [01.05.00] --- 2026-06-28
-
-
-<!-- VERSION: 01.06.00 -->
-
 All notable changes to MokoSuiteOpenGraph will be documented in this file.
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
 
+<!-- VERSION: 01.06.13 -->
+
+## [Unreleased]
+
+### Added
+- OG coverage **dashboard** as the default admin view — SVG donut gauge, coverage by content type, and a list of articles missing OG tags with a batch-generate shortcut (#94)
+- Single OG tag **create/edit screen** in the admin (the tag manager was previously read-only) (#98)
+- **CSV import** button and upload form in the tag manager (#103)
+- Component **Options** screen with a Permissions tab, plus `access.xml` ACL actions `mokoog.batch` and `mokoog.import` (#95)
+- `og_video`, `event_data`, `recipe_data`, and `custom_schema` are now included in CSV import/export and the REST API (#101)
+- Unit tests for `JsonLdBuilder::buildLocalBusiness()` and `toScriptTag()` (#33)
+
+### Changed
+- **Require Joomla 6.0+ and PHP 8.2+** (enforced at install)
+- Renamed the product from *MokoJoomOpenGraph* to **MokoSuiteOpenGraph**
+- Forward-compatibility for Joomla 7: replaced deprecated `Factory::getDbo/getUser/getSession/getLanguage`, `Joomla\CMS\Filesystem\File/Folder`, and `jexit()` (#102)
+- Aligned OG/SEO form `maxlength` values with the database column limits (#77)
+- Moved coverage metrics out of the tag list into a dedicated model (no longer runs uncached `COUNT` queries on every list load)
+
+### Fixed
+- Fatal frontend error (HTTP 500) when a non-object value was saved into the custom JSON-LD field — values are now validated as objects/arrays on save and guarded on render (#97)
+- Stored XSS via the canonical URL field — now restricted to `http`/`https` (#79)
+- Use the `mysqli` driver in the component manifest so install/upgrade SQL actually runs on Joomla 4/5/6
+- `loadArticle()` now caches negative lookups; zero dates are no longer emitted as `article:published_time`/`article:modified_time` (#106)
+
+### Security
+- AI meta-generation endpoint now requires article-edit permission and enforces an HTTP timeout and status check — previously any authenticated back-end user could trigger paid API calls (#99)
+- XML sitemap now excludes content above the public view level (no longer leaks registered/special-access articles) and writes atomically (#100)
+
+### Removed
+- Unused `ImageGenerator` class and `JsonLdBuilder::buildOrganization()`; generated OG images are now pruned after 30 days to bound disk usage (#104)
+- Empty `src/Field` and `src/Service` stub directories; packaged the `en-US` language folder (#107)
+
 ## [01.05.00] --- 2026-06-28
 
 ### Security
diff --git a/CODE_OF_CONDUCT.md b/CODE_OF_CONDUCT.md
index 656759f..1e32ef6 100644
--- a/CODE_OF_CONDUCT.md
+++ b/CODE_OF_CONDUCT.md
@@ -14,7 +14,7 @@
 	DEFGROUP: Template-Joomla
 	INGROUP: Template-Joomla.Documentation
 	REPO: https://github.com/mokoconsulting-tech/Template-Joomla/
-  VERSION: 01.06.00
+  VERSION: 01.06.13
   PATH: ./CODE_OF_CONDUCT.md
   BRIEF: Community expectations and enforcement guidelines
   NOTE: Adapted with attribution from the Contributor Covenant v2.1
diff --git a/GOVERNANCE.md b/GOVERNANCE.md
index 2565af7..e19d088 100644
--- a/GOVERNANCE.md
+++ b/GOVERNANCE.md
@@ -19,7 +19,7 @@
  DEFGROUP: mokoconsulting-tech.Template-Joomla
  INGROUP: MokoStandards.Governance
  REPO: https://github.com/mokoconsulting-tech/Template-Joomla
- VERSION: 01.06.00
+ VERSION: 01.06.13
  PATH: /GOVERNANCE.md
  BRIEF: Project governance rules, roles, and decision process for Template-Joomla
 -->
diff --git a/README.md b/README.md
index 845172e..81fcc39 100644
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 # MokoSuiteOpenGraph
 
-<!-- VERSION: 01.06.00 -->
+<!-- VERSION: 01.06.13 -->
 
 Open Graph, Twitter Card, and social sharing meta tag management for Joomla 6 and higher.
 
@@ -45,21 +45,24 @@ MokoSuiteOpenGraph gives you full control over how your Joomla content appears w
 - **Debug links** — Quick links to Facebook Debugger, LinkedIn Inspector, Google Rich Results
 - **Live preview** — Real-time Facebook, Twitter/X, LinkedIn, Discord, Mastodon, and Slack card previews in the editor
 - **Character count indicators** — Green/yellow/red warnings on OG and SEO text fields
-- **OG coverage dashboard** — Coverage percentage and missing field counts
-- **AI meta generation** — Generate OG titles and descriptions with Claude or OpenAI
+- **Coverage dashboard** — Default admin view: coverage donut, breakdown by content type, and a list of articles missing OG tags with quick batch-generate
+- **Manual tag editor** — Create and edit individual OG tag records directly in the admin
+- **Component permissions** — ACL actions (`mokoog.batch`, `mokoog.import`) configurable from the component Options → Permissions
+- **AI meta generation** — Generate OG titles and descriptions with Claude or OpenAI (article-edit permission required)
 
 ### Developer Features
 - **REST API** — Full CRUD via Joomla Web Services (`/api/v1/mokoog/tags`)
 - **MokoSuiteShop integration** — Auto-generated OG/JSON-LD for product pages with pricing meta
 - **Plugin event** — `onMokoOGAfterRender` for third-party plugins to add custom social tags
-- **OG image generator** — Text overlay on template backgrounds with auto-resize to 1200x630
-- **Per-platform image resizing** — Twitter 1200x600, Pinterest 1000x1500, WhatsApp 400x400
-- **XML sitemap** — Auto-generates sitemap.xml on article save, respects noindex
+- **Per-platform image resizing** — Twitter 1200x600, Pinterest 1000x1500, WhatsApp 400x400, with auto-resize to 1200x630
+- **XML sitemap** — Auto-generates sitemap.xml on article save; respects noindex and public access levels, written atomically
 - **OpenAPI spec** — Full REST API documentation at `openapi.yaml`
-- **PHPUnit tests** — 16 unit tests for JsonLdBuilder schema outputs
+- **PHPUnit tests** — Unit tests for JsonLdBuilder schema outputs and JSON-LD script-tag escaping
 
 ## Installation
 
+**Requirements:** Joomla 6.0 or higher and PHP 8.2 or higher.
+
 1. Download the latest `pkg_mokoog-*.zip` from [Releases](https://git.mokoconsulting.tech/MokoConsulting/MokoSuiteOpenGraph/releases)
 2. In Joomla Administrator → Extensions → Install → Upload Package File
 3. All plugins are enabled automatically on install
diff --git a/SECURITY.md b/SECURITY.md
index 007b475..26b9e89 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -23,7 +23,7 @@ DEFGROUP: Template-Joomla
 INGROUP: Template-Joomla.Documentation
 REPO: https://git.mokoconsulting.tech/MokoConsulting/Template-Joomla
 PATH: /SECURITY.md
-VERSION: 01.06.00
+VERSION: 01.06.13
 BRIEF: Security vulnerability reporting and handling policy
 -->
 
diff --git a/source/packages/com_mokoog/access.xml b/source/packages/com_mokoog/access.xml
new file mode 100644
index 0000000..2aa21c2
--- /dev/null
+++ b/source/packages/com_mokoog/access.xml
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ -->
+<access component="com_mokoog">
+    <section name="component">
+        <action name="core.admin" title="JACTION_ADMIN" />
+        <action name="core.manage" title="JACTION_MANAGE" />
+        <action name="core.create" title="JACTION_CREATE" />
+        <action name="core.delete" title="JACTION_DELETE" />
+        <action name="core.edit" title="JACTION_EDIT" />
+        <action name="core.edit.state" title="JACTION_EDITSTATE" />
+        <action name="mokoog.batch" title="COM_MOKOOG_ACTION_BATCH" description="COM_MOKOOG_ACTION_BATCH_DESC" />
+        <action name="mokoog.import" title="COM_MOKOOG_ACTION_IMPORT" description="COM_MOKOOG_ACTION_IMPORT_DESC" />
+    </section>
+</access>
diff --git a/source/packages/com_mokoog/api/src/View/Tags/JsonapiView.php b/source/packages/com_mokoog/api/src/View/Tags/JsonapiView.php
index 4a33148..9ac7aba 100644
--- a/source/packages/com_mokoog/api/src/View/Tags/JsonapiView.php
+++ b/source/packages/com_mokoog/api/src/View/Tags/JsonapiView.php
@@ -31,10 +31,14 @@ class JsonapiView extends BaseApiView
         'og_description',
         'og_image',
         'og_type',
+        'og_video',
         'seo_title',
         'meta_description',
         'robots',
         'canonical_url',
+        'event_data',
+        'recipe_data',
+        'custom_schema',
         'language',
         'published',
         'created',
@@ -54,10 +58,14 @@ class JsonapiView extends BaseApiView
         'og_description',
         'og_image',
         'og_type',
+        'og_video',
         'seo_title',
         'meta_description',
         'robots',
         'canonical_url',
+        'event_data',
+        'recipe_data',
+        'custom_schema',
         'language',
         'published',
         'created',
diff --git a/source/packages/com_mokoog/config.xml b/source/packages/com_mokoog/config.xml
new file mode 100644
index 0000000..03202c4
--- /dev/null
+++ b/source/packages/com_mokoog/config.xml
@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ -->
+<config>
+    <fieldset name="general">
+        <field
+            type="note"
+            label="COM_MOKOOG_CONFIG_NOTE_LABEL"
+            description="COM_MOKOOG_CONFIG_NOTE_DESC"
+        />
+    </fieldset>
+    <fieldset
+        name="permissions"
+        label="JCONFIG_PERMISSIONS_LABEL"
+        description="JCONFIG_PERMISSIONS_DESC"
+    >
+        <field
+            name="rules"
+            type="rules"
+            label="JCONFIG_PERMISSIONS_LABEL"
+            class="inputbox"
+            validate="rules"
+            filter="rules"
+            component="com_mokoog"
+            section="component"
+        />
+    </fieldset>
+</config>
diff --git a/source/packages/com_mokoog/forms/tag.xml b/source/packages/com_mokoog/forms/tag.xml
index 7b4a35f..7799093 100644
--- a/source/packages/com_mokoog/forms/tag.xml
+++ b/source/packages/com_mokoog/forms/tag.xml
@@ -16,13 +16,15 @@
             name="content_type"
             type="text"
             label="COM_MOKOOG_FIELD_CONTENT_TYPE"
-            readonly="true"
+            description="COM_MOKOOG_FIELD_CONTENT_TYPE_DESC"
+            required="true"
         />
         <field
             name="content_id"
             type="number"
             label="COM_MOKOOG_FIELD_CONTENT_ID"
-            readonly="true"
+            description="COM_MOKOOG_FIELD_CONTENT_ID_DESC"
+            required="true"
         />
         <field
             name="og_title"
@@ -77,37 +79,45 @@
             <option value="1">JPUBLISHED</option>
             <option value="0">JUNPUBLISHED</option>
         </field>
+        <field
+            name="language"
+            type="contentlanguage"
+            label="JFIELD_LANGUAGE_LABEL"
+            default="*"
+        >
+            <option value="*">JALL</option>
+        </field>
     </fieldset>
-    <fieldset name="seo" label="SEO Meta Tags">
+    <fieldset name="seo" label="COM_MOKOOG_FIELDSET_SEO">
         <field
             name="seo_title"
             type="text"
-            label="PLG_CONTENT_MOKOOG_FIELD_SEO_TITLE"
-            description="PLG_CONTENT_MOKOOG_FIELD_SEO_TITLE_DESC"
+            label="COM_MOKOOG_FIELD_SEO_TITLE"
+            description="COM_MOKOOG_FIELD_SEO_TITLE_DESC"
             filter="string"
-            maxlength="255"
+            maxlength="70"
         />
         <field
             name="meta_description"
             type="textarea"
-            label="PLG_CONTENT_MOKOOG_FIELD_META_DESCRIPTION"
-            description="PLG_CONTENT_MOKOOG_FIELD_META_DESCRIPTION_DESC"
+            label="COM_MOKOOG_FIELD_META_DESCRIPTION"
+            description="COM_MOKOOG_FIELD_META_DESCRIPTION_DESC"
             filter="string"
             rows="3"
-            maxlength="255"
+            maxlength="200"
         />
         <field
             name="robots"
             type="text"
-            label="PLG_CONTENT_MOKOOG_FIELD_ROBOTS"
-            description="PLG_CONTENT_MOKOOG_FIELD_ROBOTS_DESC"
+            label="COM_MOKOOG_FIELD_ROBOTS"
+            description="COM_MOKOOG_FIELD_ROBOTS_DESC"
             filter="string"
         />
         <field
             name="canonical_url"
             type="url"
-            label="PLG_CONTENT_MOKOOG_FIELD_CANONICAL_URL"
-            description="PLG_CONTENT_MOKOOG_FIELD_CANONICAL_URL_DESC"
+            label="COM_MOKOOG_FIELD_CANONICAL_URL"
+            description="COM_MOKOOG_FIELD_CANONICAL_URL_DESC"
             filter="url"
         />
     </fieldset>
diff --git a/source/packages/com_mokoog/language/en-GB/com_mokoog.ini b/source/packages/com_mokoog/language/en-GB/com_mokoog.ini
index 4f0d4d3..7410242 100644
--- a/source/packages/com_mokoog/language/en-GB/com_mokoog.ini
+++ b/source/packages/com_mokoog/language/en-GB/com_mokoog.ini
@@ -5,6 +5,13 @@
 COM_MOKOOG="MokoSuiteOpenGraph"
 COM_MOKOOG_TAGS_TITLE="MokoSuiteOpenGraph - Tag Manager"
 COM_MOKOOG_SUBMENU_TAGS="Tags"
+COM_MOKOOG_SUBMENU_DASHBOARD="Dashboard"
+COM_MOKOOG_DASHBOARD_TITLE="MokoSuiteOpenGraph - Dashboard"
+COM_MOKOOG_DASHBOARD_FIELD_GAPS="Field Coverage Gaps"
+COM_MOKOOG_DASHBOARD_BY_TYPE="Coverage by Content Type"
+COM_MOKOOG_DASHBOARD_MISSING="Articles Missing OG Tags"
+COM_MOKOOG_DASHBOARD_ALL_COVERED="All published articles have OG tags."
+COM_MOKOOG_DASHBOARD_MISSING_NOTE="Showing up to 20 most recent. Use Batch Generate to create OG tags for all articles at once."
 COM_MOKOOG_NO_TAGS="No Open Graph tags have been created yet. Tags are created automatically when you edit articles or menu items."
 COM_MOKOOG_TABLE_CAPTION="Table of Open Graph tags"
 COM_MOKOOG_AUTO_GENERATED="auto-generated"
@@ -66,3 +73,27 @@ COM_MOKOOG_COVERAGE_ARTICLES="%d of %d articles have OG tags"
 COM_MOKOOG_COVERAGE_MISSING_TITLE="%d tags missing custom title"
 COM_MOKOOG_COVERAGE_MISSING_DESC="%d tags missing custom description"
 COM_MOKOOG_COVERAGE_MISSING_IMAGE="%d tags missing custom image"
+
+; Single-tag edit form
+COM_MOKOOG_TAG_NEW="MokoSuiteOpenGraph - New OG Tag"
+COM_MOKOOG_TAG_EDIT="MokoSuiteOpenGraph - Edit OG Tag"
+COM_MOKOOG_TAB_DETAILS="Details"
+COM_MOKOOG_FIELDSET_SEO="SEO Meta Tags"
+COM_MOKOOG_FIELD_CONTENT_TYPE_DESC="The content type this OG tag applies to (e.g. com_content, menu, com_content.category)."
+COM_MOKOOG_FIELD_CONTENT_ID_DESC="The ID of the content item this OG tag applies to."
+COM_MOKOOG_FIELD_SEO_TITLE="SEO Title"
+COM_MOKOOG_FIELD_SEO_TITLE_DESC="Overrides the page &lt;title&gt; tag (max 70 characters)."
+COM_MOKOOG_FIELD_META_DESCRIPTION="Meta Description"
+COM_MOKOOG_FIELD_META_DESCRIPTION_DESC="Overrides the page meta description (max 200 characters)."
+COM_MOKOOG_FIELD_ROBOTS="Robots"
+COM_MOKOOG_FIELD_ROBOTS_DESC="Per-page robots directive, e.g. noindex, nofollow."
+COM_MOKOOG_FIELD_CANONICAL_URL="Canonical URL"
+COM_MOKOOG_FIELD_CANONICAL_URL_DESC="Overrides the canonical URL for this content item (http/https only)."
+
+; ACL actions (access.xml) and component options (config.xml)
+COM_MOKOOG_ACTION_BATCH="Batch Generate OG Tags"
+COM_MOKOOG_ACTION_BATCH_DESC="Allows users in this group to run batch OG tag generation."
+COM_MOKOOG_ACTION_IMPORT="Import / Export OG Tags"
+COM_MOKOOG_ACTION_IMPORT_DESC="Allows users in this group to import and export OG tags via CSV."
+COM_MOKOOG_CONFIG_NOTE_LABEL="Where are the settings?"
+COM_MOKOOG_CONFIG_NOTE_DESC="Open Graph and SEO settings are configured in the System - MokoSuiteOpenGraph plugin (Extensions &#8594; Plugins). This screen manages component permissions only."
diff --git a/source/packages/com_mokoog/language/en-US/com_mokoog.ini b/source/packages/com_mokoog/language/en-US/com_mokoog.ini
index 4f0d4d3..7410242 100644
--- a/source/packages/com_mokoog/language/en-US/com_mokoog.ini
+++ b/source/packages/com_mokoog/language/en-US/com_mokoog.ini
@@ -5,6 +5,13 @@
 COM_MOKOOG="MokoSuiteOpenGraph"
 COM_MOKOOG_TAGS_TITLE="MokoSuiteOpenGraph - Tag Manager"
 COM_MOKOOG_SUBMENU_TAGS="Tags"
+COM_MOKOOG_SUBMENU_DASHBOARD="Dashboard"
+COM_MOKOOG_DASHBOARD_TITLE="MokoSuiteOpenGraph - Dashboard"
+COM_MOKOOG_DASHBOARD_FIELD_GAPS="Field Coverage Gaps"
+COM_MOKOOG_DASHBOARD_BY_TYPE="Coverage by Content Type"
+COM_MOKOOG_DASHBOARD_MISSING="Articles Missing OG Tags"
+COM_MOKOOG_DASHBOARD_ALL_COVERED="All published articles have OG tags."
+COM_MOKOOG_DASHBOARD_MISSING_NOTE="Showing up to 20 most recent. Use Batch Generate to create OG tags for all articles at once."
 COM_MOKOOG_NO_TAGS="No Open Graph tags have been created yet. Tags are created automatically when you edit articles or menu items."
 COM_MOKOOG_TABLE_CAPTION="Table of Open Graph tags"
 COM_MOKOOG_AUTO_GENERATED="auto-generated"
@@ -66,3 +73,27 @@ COM_MOKOOG_COVERAGE_ARTICLES="%d of %d articles have OG tags"
 COM_MOKOOG_COVERAGE_MISSING_TITLE="%d tags missing custom title"
 COM_MOKOOG_COVERAGE_MISSING_DESC="%d tags missing custom description"
 COM_MOKOOG_COVERAGE_MISSING_IMAGE="%d tags missing custom image"
+
+; Single-tag edit form
+COM_MOKOOG_TAG_NEW="MokoSuiteOpenGraph - New OG Tag"
+COM_MOKOOG_TAG_EDIT="MokoSuiteOpenGraph - Edit OG Tag"
+COM_MOKOOG_TAB_DETAILS="Details"
+COM_MOKOOG_FIELDSET_SEO="SEO Meta Tags"
+COM_MOKOOG_FIELD_CONTENT_TYPE_DESC="The content type this OG tag applies to (e.g. com_content, menu, com_content.category)."
+COM_MOKOOG_FIELD_CONTENT_ID_DESC="The ID of the content item this OG tag applies to."
+COM_MOKOOG_FIELD_SEO_TITLE="SEO Title"
+COM_MOKOOG_FIELD_SEO_TITLE_DESC="Overrides the page &lt;title&gt; tag (max 70 characters)."
+COM_MOKOOG_FIELD_META_DESCRIPTION="Meta Description"
+COM_MOKOOG_FIELD_META_DESCRIPTION_DESC="Overrides the page meta description (max 200 characters)."
+COM_MOKOOG_FIELD_ROBOTS="Robots"
+COM_MOKOOG_FIELD_ROBOTS_DESC="Per-page robots directive, e.g. noindex, nofollow."
+COM_MOKOOG_FIELD_CANONICAL_URL="Canonical URL"
+COM_MOKOOG_FIELD_CANONICAL_URL_DESC="Overrides the canonical URL for this content item (http/https only)."
+
+; ACL actions (access.xml) and component options (config.xml)
+COM_MOKOOG_ACTION_BATCH="Batch Generate OG Tags"
+COM_MOKOOG_ACTION_BATCH_DESC="Allows users in this group to run batch OG tag generation."
+COM_MOKOOG_ACTION_IMPORT="Import / Export OG Tags"
+COM_MOKOOG_ACTION_IMPORT_DESC="Allows users in this group to import and export OG tags via CSV."
+COM_MOKOOG_CONFIG_NOTE_LABEL="Where are the settings?"
+COM_MOKOOG_CONFIG_NOTE_DESC="Open Graph and SEO settings are configured in the System - MokoSuiteOpenGraph plugin (Extensions &#8594; Plugins). This screen manages component permissions only."
diff --git a/source/packages/com_mokoog/mokoog.xml b/source/packages/com_mokoog/mokoog.xml
index 0a16646..09d2e63 100644
--- a/source/packages/com_mokoog/mokoog.xml
+++ b/source/packages/com_mokoog/mokoog.xml
@@ -8,7 +8,7 @@
  -->
 <extension type="component" method="upgrade">
     <name>com_mokoog</name>
-    <version>01.06.00</version>
+    <version>01.06.13</version>
     <creationDate>2026-05-23</creationDate>
     <author>Moko Consulting</author>
     <authorEmail>hello@mokoconsulting.tech</authorEmail>
@@ -50,6 +50,8 @@
             <folder>View</folder>
         </files>
         <files folder="tmpl">
+            <folder>dashboard</folder>
+            <folder>tag</folder>
             <folder>tags</folder>
         </files>
         <files folder="sql">
@@ -63,9 +65,15 @@
         </files>
         <files folder="language">
             <folder>en-GB</folder>
+            <folder>en-US</folder>
+        </files>
+        <files>
+            <filename>access.xml</filename>
+            <filename>config.xml</filename>
         </files>
         <menu img="class:bookmark">COM_MOKOOG</menu>
         <submenu>
+            <menu link="option=com_mokoog&amp;view=dashboard">COM_MOKOOG_SUBMENU_DASHBOARD</menu>
             <menu link="option=com_mokoog&amp;view=tags">COM_MOKOOG_SUBMENU_TAGS</menu>
         </submenu>
     </administration>
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.05.02.sql b/source/packages/com_mokoog/sql/updates/mysql/01.05.02.sql
new file mode 100644
index 0000000..b47f3f7
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.05.02.sql
@@ -0,0 +1 @@
+/* 01.05.02 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.02.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.02.sql
new file mode 100644
index 0000000..b9fcc0f
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.02.sql
@@ -0,0 +1 @@
+/* 01.06.02 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.03.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.03.sql
new file mode 100644
index 0000000..b25e218
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.03.sql
@@ -0,0 +1 @@
+/* 01.06.03 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.04.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.04.sql
new file mode 100644
index 0000000..2297d2a
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.04.sql
@@ -0,0 +1 @@
+/* 01.06.04 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.05.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.05.sql
new file mode 100644
index 0000000..272fc02
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.05.sql
@@ -0,0 +1 @@
+/* 01.06.05 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.06.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.06.sql
new file mode 100644
index 0000000..5c073d4
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.06.sql
@@ -0,0 +1 @@
+/* 01.06.06 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.07.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.07.sql
new file mode 100644
index 0000000..b49f855
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.07.sql
@@ -0,0 +1 @@
+/* 01.06.07 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.08.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.08.sql
new file mode 100644
index 0000000..ec97fe3
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.08.sql
@@ -0,0 +1 @@
+/* 01.06.08 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.09.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.09.sql
new file mode 100644
index 0000000..66fcb9c
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.09.sql
@@ -0,0 +1 @@
+/* 01.06.09 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.10.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.10.sql
new file mode 100644
index 0000000..2e3ab43
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.10.sql
@@ -0,0 +1 @@
+/* 01.06.10 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.11.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.11.sql
new file mode 100644
index 0000000..e932e52
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.11.sql
@@ -0,0 +1 @@
+/* 01.06.11 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.12.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.12.sql
new file mode 100644
index 0000000..982f504
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.12.sql
@@ -0,0 +1 @@
+/* 01.06.12 — no schema changes */
diff --git a/source/packages/com_mokoog/sql/updates/mysql/01.06.13.sql b/source/packages/com_mokoog/sql/updates/mysql/01.06.13.sql
new file mode 100644
index 0000000..057c11b
--- /dev/null
+++ b/source/packages/com_mokoog/sql/updates/mysql/01.06.13.sql
@@ -0,0 +1 @@
+/* 01.06.13 — no schema changes */
diff --git a/source/packages/com_mokoog/src/Controller/BatchController.php b/source/packages/com_mokoog/src/Controller/BatchController.php
index c07cba1..ee2aff8 100644
--- a/source/packages/com_mokoog/src/Controller/BatchController.php
+++ b/source/packages/com_mokoog/src/Controller/BatchController.php
@@ -29,7 +29,10 @@ class BatchController extends BaseController
     {
         Session::checkToken('get') || throw new \RuntimeException(Text::_('JINVALID_TOKEN'), 403);
 
-        if (!Factory::getApplication()->getIdentity()->authorise('core.create', 'com_mokoog')) {
+        $identity = Factory::getApplication()->getIdentity();
+
+        if (!$identity->authorise('mokoog.batch', 'com_mokoog')
+            && !$identity->authorise('core.create', 'com_mokoog')) {
             throw new \RuntimeException(Text::_('JLIB_APPLICATION_ERROR_ACCESS_FORBIDDEN'), 403);
         }
 
@@ -62,7 +65,10 @@ class BatchController extends BaseController
     {
         Session::checkToken('get') || throw new \RuntimeException(Text::_('JINVALID_TOKEN'), 403);
 
-        if (!Factory::getApplication()->getIdentity()->authorise('core.create', 'com_mokoog')) {
+        $identity = Factory::getApplication()->getIdentity();
+
+        if (!$identity->authorise('mokoog.batch', 'com_mokoog')
+            && !$identity->authorise('core.create', 'com_mokoog')) {
             throw new \RuntimeException(Text::_('JLIB_APPLICATION_ERROR_ACCESS_FORBIDDEN'), 403);
         }
 
diff --git a/source/packages/com_mokoog/src/Controller/DisplayController.php b/source/packages/com_mokoog/src/Controller/DisplayController.php
index 93330a7..9461520 100644
--- a/source/packages/com_mokoog/src/Controller/DisplayController.php
+++ b/source/packages/com_mokoog/src/Controller/DisplayController.php
@@ -21,5 +21,5 @@ class DisplayController extends BaseController
      *
      * @var string
      */
-    protected $default_view = 'tags';
+    protected $default_view = 'dashboard';
 }
diff --git a/source/packages/com_mokoog/src/Controller/ImportExportController.php b/source/packages/com_mokoog/src/Controller/ImportExportController.php
index dd0a446..336d744 100644
--- a/source/packages/com_mokoog/src/Controller/ImportExportController.php
+++ b/source/packages/com_mokoog/src/Controller/ImportExportController.php
@@ -60,6 +60,10 @@ class ImportExportController extends BaseController
                 $db->quoteName('t.robots'),
                 $db->quoteName('t.canonical_url'),
                 $db->quoteName('t.language'),
+                $db->quoteName('t.og_video'),
+                $db->quoteName('t.event_data'),
+                $db->quoteName('t.recipe_data'),
+                $db->quoteName('t.custom_schema'),
             ])
             ->from($db->quoteName('#__mokoog_tags', 't'))
             ->leftJoin(
@@ -84,7 +88,7 @@ class ImportExportController extends BaseController
             'content_type', 'content_id', 'article_title',
             'og_title', 'og_description', 'og_image', 'og_type',
             'seo_title', 'meta_description', 'robots', 'canonical_url',
-            'language',
+            'language', 'og_video', 'event_data', 'recipe_data', 'custom_schema',
         ]);
 
         foreach ($rows as $row) {
@@ -106,7 +110,8 @@ class ImportExportController extends BaseController
 
         $identity = Factory::getApplication()->getIdentity();
 
-        if (!$identity->authorise('core.create', 'com_mokoog') || !$identity->authorise('core.edit', 'com_mokoog')) {
+        if (!$identity->authorise('mokoog.import', 'com_mokoog')
+            && !($identity->authorise('core.create', 'com_mokoog') && $identity->authorise('core.edit', 'com_mokoog'))) {
             throw new \RuntimeException(Text::_('JLIB_APPLICATION_ERROR_ACCESS_FORBIDDEN'), 403);
         }
 
@@ -187,6 +192,10 @@ class ImportExportController extends BaseController
             $robots        = trim($row[9] ?? '');
             $canonicalUrl  = trim($row[10] ?? '');
             $language      = trim($row[11] ?? '*');
+            $ogVideo       = $this->sanitizeUrl($row[12] ?? '');
+            $eventData     = $this->validateJsonField($row[13] ?? '');
+            $recipeData    = $this->validateJsonField($row[14] ?? '');
+            $customSchema  = $this->validateJsonField($row[15] ?? '');
 
             // Validate language tag format (e.g., 'en-GB', '*')
             if ($language !== '*' && !preg_match('/^[a-z]{2,3}-[A-Z]{2}$/', $language)) {
@@ -229,6 +238,10 @@ class ImportExportController extends BaseController
                 'robots'           => $robots,
                 'canonical_url'    => $canonicalUrl,
                 'language'         => $language,
+                'og_video'         => $ogVideo,
+                'event_data'       => $eventData,
+                'recipe_data'      => $recipeData,
+                'custom_schema'    => $customSchema,
                 'published'        => 1,
                 'modified'         => $now,
             ];
@@ -252,4 +265,45 @@ class ImportExportController extends BaseController
         );
         $app->redirect('index.php?option=com_mokoog&view=tags');
     }
+
+    /**
+     * Validate a JSON field — returns trimmed JSON only if it is an object/array.
+     *
+     * Scalars and invalid JSON are dropped to '' so an import can never inject a
+     * payload that crashes the frontend JSON-LD renderer.
+     *
+     * @param   string  $value  Raw CSV cell value
+     *
+     * @return  string
+     */
+    private function validateJsonField(string $value): string
+    {
+        $value = trim($value);
+
+        if ($value === '' || !\is_array(json_decode($value, true))) {
+            return '';
+        }
+
+        return $value;
+    }
+
+    /**
+     * Sanitize a URL to only allow http/https schemes.
+     *
+     * @param   string  $url  Raw CSV cell value
+     *
+     * @return  string  Sanitized URL or empty string
+     */
+    private function sanitizeUrl(string $url): string
+    {
+        $url = trim($url);
+
+        if ($url === '') {
+            return '';
+        }
+
+        $scheme = strtolower((string) parse_url($url, PHP_URL_SCHEME));
+
+        return \in_array($scheme, ['http', 'https'], true) ? $url : '';
+    }
 }
diff --git a/source/packages/com_mokoog/src/Controller/TagController.php b/source/packages/com_mokoog/src/Controller/TagController.php
new file mode 100644
index 0000000..c1ce226
--- /dev/null
+++ b/source/packages/com_mokoog/src/Controller/TagController.php
@@ -0,0 +1,31 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+namespace Joomla\Component\MokoOG\Administrator\Controller;
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\MVC\Controller\FormController;
+
+/**
+ * Controller for a single OG tag record.
+ *
+ * Provides the standard add/edit/save/apply/cancel tasks via FormController,
+ * backed by the existing TagModel (AdminModel) and TagTable.
+ */
+class TagController extends FormController
+{
+    /**
+     * The list view to redirect to after save/cancel.
+     *
+     * @var string
+     */
+    protected $view_list = 'tags';
+}
diff --git a/source/packages/com_mokoog/src/Field/index.html b/source/packages/com_mokoog/src/Field/index.html
deleted file mode 100644
index 94906bc..0000000
--- a/source/packages/com_mokoog/src/Field/index.html
+++ /dev/null
@@ -1 +0,0 @@
-<html><body bgcolor="#FFFFFF"></body></html>
diff --git a/source/packages/com_mokoog/src/Model/DashboardModel.php b/source/packages/com_mokoog/src/Model/DashboardModel.php
new file mode 100644
index 0000000..0d4b12c
--- /dev/null
+++ b/source/packages/com_mokoog/src/Model/DashboardModel.php
@@ -0,0 +1,159 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+namespace Joomla\Component\MokoOG\Administrator\Model;
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\MVC\Model\BaseDatabaseModel;
+
+/**
+ * Read-only model providing OG tag coverage metrics for the dashboard.
+ */
+class DashboardModel extends BaseDatabaseModel
+{
+    /**
+     * Overall coverage statistics for com_content articles.
+     *
+     * @return  array{total:int, with_og:int, coverage:int, missing_title:int, missing_description:int, missing_image:int}
+     */
+    public function getStats(): array
+    {
+        $db = $this->getDatabase();
+
+        $total         = $this->countContent();
+        $withOg        = $this->countDistinct();
+        $missingTitle  = $this->countEmptyField('og_title');
+        $missingDesc   = $this->countEmptyField('og_description');
+        $missingImage  = $this->countEmptyField('og_image');
+
+        return [
+            'total'               => $total,
+            'with_og'             => $withOg,
+            'coverage'            => $total > 0 ? (int) round(($withOg / $total) * 100) : 0,
+            'missing_title'       => $missingTitle,
+            'missing_description' => $missingDesc,
+            'missing_image'       => $missingImage,
+        ];
+    }
+
+    /**
+     * Coverage broken down by content_type.
+     *
+     * @return  array  Rows of {content_type, total, with_title, with_image}
+     */
+    public function getCoverageByType(): array
+    {
+        $db    = $this->getDatabase();
+        $empty = $db->quote('');
+
+        $query = $db->getQuery(true)
+            ->select([
+                $db->quoteName('content_type'),
+                'COUNT(*) AS ' . $db->quoteName('total'),
+                'SUM(CASE WHEN ' . $db->quoteName('og_title') . ' <> ' . $empty . ' THEN 1 ELSE 0 END) AS ' . $db->quoteName('with_title'),
+                'SUM(CASE WHEN ' . $db->quoteName('og_image') . ' <> ' . $empty . ' THEN 1 ELSE 0 END) AS ' . $db->quoteName('with_image'),
+            ])
+            ->from($db->quoteName('#__mokoog_tags'))
+            ->where($db->quoteName('published') . ' = 1')
+            ->group($db->quoteName('content_type'))
+            ->order($db->quoteName('content_type') . ' ASC');
+
+        $db->setQuery($query);
+
+        return $db->loadObjectList() ?: [];
+    }
+
+    /**
+     * Published articles that have no OG tag yet.
+     *
+     * @param   int  $limit  Maximum rows to return
+     *
+     * @return  array  Rows of {id, title}
+     */
+    public function getMissingArticles(int $limit = 20): array
+    {
+        $db = $this->getDatabase();
+
+        $query = $db->getQuery(true)
+            ->select([$db->quoteName('c.id'), $db->quoteName('c.title')])
+            ->from($db->quoteName('#__content', 'c'))
+            ->leftJoin(
+                $db->quoteName('#__mokoog_tags', 't')
+                . ' ON ' . $db->quoteName('t.content_type') . ' = ' . $db->quote('com_content')
+                . ' AND ' . $db->quoteName('t.content_id') . ' = ' . $db->quoteName('c.id')
+            )
+            ->where($db->quoteName('c.state') . ' = 1')
+            ->where($db->quoteName('t.id') . ' IS NULL')
+            ->order($db->quoteName('c.id') . ' DESC');
+
+        $db->setQuery($query, 0, max(1, $limit));
+
+        return $db->loadObjectList() ?: [];
+    }
+
+    /**
+     * Count published com_content articles.
+     */
+    private function countContent(): int
+    {
+        $db = $this->getDatabase();
+        $db->setQuery(
+            $db->getQuery(true)
+                ->select('COUNT(*)')
+                ->from($db->quoteName('#__content'))
+                ->where($db->quoteName('state') . ' = 1')
+        );
+
+        return (int) $db->loadResult();
+    }
+
+    /**
+     * Count distinct articles that have at least one published OG tag.
+     */
+    private function countDistinct(): int
+    {
+        $db = $this->getDatabase();
+        $db->setQuery(
+            $db->getQuery(true)
+                ->select('COUNT(DISTINCT ' . $db->quoteName('content_id') . ')')
+                ->from($db->quoteName('#__mokoog_tags'))
+                ->where($db->quoteName('content_type') . ' = ' . $db->quote('com_content'))
+                ->where($db->quoteName('published') . ' = 1')
+        );
+
+        return (int) $db->loadResult();
+    }
+
+    /**
+     * Count published OG tag rows whose given field is empty.
+     *
+     * @param   string  $field  One of og_title, og_description, og_image
+     */
+    private function countEmptyField(string $field): int
+    {
+        // Whitelist the column name — it is never user input here, but keep it strict.
+        if (!\in_array($field, ['og_title', 'og_description', 'og_image'], true)) {
+            return 0;
+        }
+
+        $db = $this->getDatabase();
+        $db->setQuery(
+            $db->getQuery(true)
+                ->select('COUNT(*)')
+                ->from($db->quoteName('#__mokoog_tags'))
+                ->where($db->quoteName('content_type') . ' = ' . $db->quote('com_content'))
+                ->where($db->quoteName('published') . ' = 1')
+                ->where($db->quoteName($field) . ' = ' . $db->quote(''))
+        );
+
+        return (int) $db->loadResult();
+    }
+}
diff --git a/source/packages/com_mokoog/src/Service/index.html b/source/packages/com_mokoog/src/Service/index.html
deleted file mode 100644
index 94906bc..0000000
--- a/source/packages/com_mokoog/src/Service/index.html
+++ /dev/null
@@ -1 +0,0 @@
-<html><body bgcolor="#FFFFFF"></body></html>
diff --git a/source/packages/com_mokoog/src/View/Dashboard/HtmlView.php b/source/packages/com_mokoog/src/View/Dashboard/HtmlView.php
new file mode 100644
index 0000000..1f2c8aa
--- /dev/null
+++ b/source/packages/com_mokoog/src/View/Dashboard/HtmlView.php
@@ -0,0 +1,76 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+namespace Joomla\Component\MokoOG\Administrator\View\Dashboard;
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\Language\Text;
+use Joomla\CMS\MVC\View\HtmlView as BaseHtmlView;
+use Joomla\CMS\Toolbar\ToolbarHelper;
+
+/**
+ * Dashboard view — OG tag coverage metrics.
+ */
+class HtmlView extends BaseHtmlView
+{
+    /**
+     * Overall coverage stats.
+     *
+     * @var array
+     */
+    protected $stats = [];
+
+    /**
+     * Coverage broken down by content_type.
+     *
+     * @var array
+     */
+    protected $byType = [];
+
+    /**
+     * Published articles missing an OG tag.
+     *
+     * @var array
+     */
+    protected $missing = [];
+
+    /**
+     * Display the view.
+     *
+     * @param   string  $tpl  Template name
+     *
+     * @return  void
+     */
+    public function display($tpl = null): void
+    {
+        /** @var \Joomla\Component\MokoOG\Administrator\Model\DashboardModel $model */
+        $model = $this->getModel();
+
+        $this->stats   = $model->getStats();
+        $this->byType  = $model->getCoverageByType();
+        $this->missing = $model->getMissingArticles(20);
+
+        $this->addToolbar();
+
+        parent::display($tpl);
+    }
+
+    /**
+     * Add the toolbar.
+     *
+     * @return  void
+     */
+    protected function addToolbar(): void
+    {
+        ToolbarHelper::title(Text::_('COM_MOKOOG_DASHBOARD_TITLE'), 'bookmark');
+        ToolbarHelper::preferences('com_mokoog');
+    }
+}
diff --git a/source/packages/com_mokoog/src/View/Tag/HtmlView.php b/source/packages/com_mokoog/src/View/Tag/HtmlView.php
new file mode 100644
index 0000000..8b5d31a
--- /dev/null
+++ b/source/packages/com_mokoog/src/View/Tag/HtmlView.php
@@ -0,0 +1,76 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+namespace Joomla\Component\MokoOG\Administrator\View\Tag;
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\Factory;
+use Joomla\CMS\Language\Text;
+use Joomla\CMS\MVC\View\HtmlView as BaseHtmlView;
+use Joomla\CMS\Toolbar\ToolbarHelper;
+
+/**
+ * Edit view for a single OG tag record.
+ */
+class HtmlView extends BaseHtmlView
+{
+    /**
+     * The edit form.
+     *
+     * @var \Joomla\CMS\Form\Form
+     */
+    protected $form;
+
+    /**
+     * The item being edited.
+     *
+     * @var object
+     */
+    protected $item;
+
+    /**
+     * Display the view.
+     *
+     * @param   string  $tpl  Template name
+     *
+     * @return  void
+     */
+    public function display($tpl = null): void
+    {
+        $this->form = $this->get('Form');
+        $this->item = $this->get('Item');
+
+        $this->addToolbar();
+
+        parent::display($tpl);
+    }
+
+    /**
+     * Add the edit toolbar.
+     *
+     * @return  void
+     */
+    protected function addToolbar(): void
+    {
+        Factory::getApplication()->getInput()->set('hidemainmenu', true);
+
+        $isNew = empty($this->item->id);
+
+        ToolbarHelper::title(
+            Text::_($isNew ? 'COM_MOKOOG_TAG_NEW' : 'COM_MOKOOG_TAG_EDIT'),
+            'bookmark'
+        );
+
+        ToolbarHelper::apply('tag.apply');
+        ToolbarHelper::save('tag.save');
+        ToolbarHelper::cancel('tag.cancel', $isNew ? 'JTOOLBAR_CANCEL' : 'JTOOLBAR_CLOSE');
+    }
+}
diff --git a/source/packages/com_mokoog/src/View/Tags/HtmlView.php b/source/packages/com_mokoog/src/View/Tags/HtmlView.php
index 9a07a00..f0ae838 100644
--- a/source/packages/com_mokoog/src/View/Tags/HtmlView.php
+++ b/source/packages/com_mokoog/src/View/Tags/HtmlView.php
@@ -81,8 +81,11 @@ class HtmlView extends BaseHtmlView
     protected function addToolbar(): void
     {
         ToolbarHelper::title(Text::_('COM_MOKOOG_TAGS_TITLE'), 'bookmark');
+        ToolbarHelper::addNew('tag.add');
+        ToolbarHelper::editList('tag.edit');
         ToolbarHelper::custom('batch.generate', 'refresh', '', 'COM_MOKOOG_TOOLBAR_BATCH_GENERATE', false);
         ToolbarHelper::custom('importexport.export', 'download', '', 'COM_MOKOOG_TOOLBAR_EXPORT', false);
+        ToolbarHelper::custom('mokoog.showimport', 'upload', '', 'COM_MOKOOG_TOOLBAR_IMPORT', false);
         ToolbarHelper::deleteList('JGLOBAL_CONFIRM_DELETE', 'tags.delete');
         ToolbarHelper::preferences('com_mokoog');
     }
diff --git a/source/packages/com_mokoog/tmpl/dashboard/default.php b/source/packages/com_mokoog/tmpl/dashboard/default.php
new file mode 100644
index 0000000..d238d3a
--- /dev/null
+++ b/source/packages/com_mokoog/tmpl/dashboard/default.php
@@ -0,0 +1,142 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\Language\Text;
+use Joomla\CMS\Router\Route;
+use Joomla\CMS\Uri\Uri;
+
+/** @var \Joomla\Component\MokoOG\Administrator\View\Dashboard\HtmlView $this */
+
+$s        = $this->stats;
+$coverage = (int) ($s['coverage'] ?? 0);
+$total    = (int) ($s['total'] ?? 0);
+$withOg   = (int) ($s['with_og'] ?? 0);
+
+$colorClass = $coverage >= 80 ? 'text-success' : ($coverage >= 50 ? 'text-warning' : 'text-danger');
+$stroke     = $coverage >= 80 ? '#198754' : ($coverage >= 50 ? '#ffc107' : '#dc3545');
+
+$r    = 54.0;
+$circ = 2 * M_PI * $r;
+$dash = round($circ * $coverage / 100, 2);
+$gap  = round($circ - $dash, 2);
+?>
+<div class="p-3">
+    <div class="row">
+        <!-- Coverage donut -->
+        <div class="col-lg-4 mb-3">
+            <div class="card h-100">
+                <div class="card-body text-center">
+                    <h4 class="card-title"><?php echo Text::_('COM_MOKOOG_COVERAGE_PERCENT'); ?></h4>
+                    <svg width="160" height="160" viewBox="0 0 140 140" role="img"
+                         aria-label="<?php echo $coverage; ?>%" class="<?php echo $colorClass; ?>">
+                        <circle cx="70" cy="70" r="54" fill="none" stroke="#e9ecef" stroke-width="14"></circle>
+                        <circle cx="70" cy="70" r="54" fill="none" stroke="<?php echo $stroke; ?>" stroke-width="14"
+                                stroke-dasharray="<?php echo $dash; ?> <?php echo $gap; ?>"
+                                stroke-linecap="round" transform="rotate(-90 70 70)"></circle>
+                        <text x="70" y="80" text-anchor="middle" font-size="30" font-weight="bold" fill="currentColor"><?php echo $coverage; ?>%</text>
+                    </svg>
+                    <p class="mt-2 mb-0"><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_ARTICLES', $withOg, $total); ?></p>
+                </div>
+            </div>
+        </div>
+
+        <!-- Missing fields -->
+        <div class="col-lg-8 mb-3">
+            <div class="card h-100">
+                <div class="card-body">
+                    <h4 class="card-title"><?php echo Text::_('COM_MOKOOG_DASHBOARD_FIELD_GAPS'); ?></h4>
+                    <ul class="list-group list-group-flush">
+                        <li class="list-group-item d-flex justify-content-between">
+                            <span><?php echo Text::_('COM_MOKOOG_HEADING_OG_TITLE'); ?></span>
+                            <span class="badge bg-<?php echo ($s['missing_title'] ?? 0) ? 'warning text-dark' : 'success'; ?>"><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_TITLE', (int) ($s['missing_title'] ?? 0)); ?></span>
+                        </li>
+                        <li class="list-group-item d-flex justify-content-between">
+                            <span><?php echo Text::_('COM_MOKOOG_FIELD_OG_DESCRIPTION'); ?></span>
+                            <span class="badge bg-<?php echo ($s['missing_description'] ?? 0) ? 'warning text-dark' : 'success'; ?>"><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_DESC', (int) ($s['missing_description'] ?? 0)); ?></span>
+                        </li>
+                        <li class="list-group-item d-flex justify-content-between">
+                            <span><?php echo Text::_('COM_MOKOOG_HEADING_IMAGE'); ?></span>
+                            <span class="badge bg-<?php echo ($s['missing_image'] ?? 0) ? 'warning text-dark' : 'success'; ?>"><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_IMAGE', (int) ($s['missing_image'] ?? 0)); ?></span>
+                        </li>
+                    </ul>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div class="row">
+        <!-- Coverage by content type -->
+        <div class="col-lg-6 mb-3">
+            <div class="card h-100">
+                <div class="card-body">
+                    <h4 class="card-title"><?php echo Text::_('COM_MOKOOG_DASHBOARD_BY_TYPE'); ?></h4>
+                    <?php if (empty($this->byType)) : ?>
+                        <p class="text-muted mb-0"><?php echo Text::_('COM_MOKOOG_NO_TAGS'); ?></p>
+                    <?php else : ?>
+                        <table class="table table-sm mb-0">
+                            <thead>
+                                <tr>
+                                    <th><?php echo Text::_('COM_MOKOOG_HEADING_CONTENT_TYPE'); ?></th>
+                                    <th class="text-end"><?php echo Text::_('JGRID_HEADING_ID'); ?></th>
+                                    <th class="text-end"><?php echo Text::_('COM_MOKOOG_HEADING_OG_TITLE'); ?></th>
+                                    <th class="text-end"><?php echo Text::_('COM_MOKOOG_HEADING_IMAGE'); ?></th>
+                                </tr>
+                            </thead>
+                            <tbody>
+                                <?php foreach ($this->byType as $row) : ?>
+                                    <tr>
+                                        <td><?php echo $this->escape($row->content_type); ?></td>
+                                        <td class="text-end"><?php echo (int) $row->total; ?></td>
+                                        <td class="text-end"><?php echo (int) $row->with_title; ?></td>
+                                        <td class="text-end"><?php echo (int) $row->with_image; ?></td>
+                                    </tr>
+                                <?php endforeach; ?>
+                            </tbody>
+                        </table>
+                    <?php endif; ?>
+                </div>
+            </div>
+        </div>
+
+        <!-- Articles missing OG tags -->
+        <div class="col-lg-6 mb-3">
+            <div class="card h-100">
+                <div class="card-body">
+                    <div class="d-flex justify-content-between align-items-center mb-2">
+                        <h4 class="card-title mb-0"><?php echo Text::_('COM_MOKOOG_DASHBOARD_MISSING'); ?></h4>
+                        <a class="btn btn-sm btn-primary" href="<?php echo Route::_('index.php?option=com_mokoog&view=tags'); ?>">
+                            <span class="icon-refresh" aria-hidden="true"></span>
+                            <?php echo Text::_('COM_MOKOOG_TOOLBAR_BATCH_GENERATE'); ?>
+                        </a>
+                    </div>
+                    <?php if (empty($this->missing)) : ?>
+                        <p class="text-success mb-0">
+                            <span class="icon-check" aria-hidden="true"></span>
+                            <?php echo Text::_('COM_MOKOOG_DASHBOARD_ALL_COVERED'); ?>
+                        </p>
+                    <?php else : ?>
+                        <ul class="list-group list-group-flush">
+                            <?php foreach ($this->missing as $article) : ?>
+                                <li class="list-group-item py-1">
+                                    <a href="<?php echo Route::_('index.php?option=com_content&task=article.edit&id=' . (int) $article->id); ?>">
+                                        <?php echo $this->escape($article->title); ?>
+                                    </a>
+                                </li>
+                            <?php endforeach; ?>
+                        </ul>
+                        <small class="text-muted d-block mt-2"><?php echo Text::_('COM_MOKOOG_DASHBOARD_MISSING_NOTE'); ?></small>
+                    <?php endif; ?>
+                </div>
+            </div>
+        </div>
+    </div>
+</div>
diff --git a/source/packages/com_mokoog/tmpl/tag/edit.php b/source/packages/com_mokoog/tmpl/tag/edit.php
new file mode 100644
index 0000000..63bfe41
--- /dev/null
+++ b/source/packages/com_mokoog/tmpl/tag/edit.php
@@ -0,0 +1,41 @@
+<?php
+
+/**
+ * @package     MokoSuiteOpenGraph
+ * @subpackage  com_mokoog
+ * @author      Moko Consulting <hello@mokoconsulting.tech>
+ * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
+ * @license     GNU General Public License version 3 or later; see LICENSE
+ */
+
+defined('_JEXEC') or die;
+
+use Joomla\CMS\HTML\HTMLHelper;
+use Joomla\CMS\Language\Text;
+use Joomla\CMS\Router\Route;
+
+/** @var \Joomla\Component\MokoOG\Administrator\View\Tag\HtmlView $this */
+
+HTMLHelper::_('behavior.formvalidator');
+?>
+<form action="<?php echo Route::_('index.php?option=com_mokoog&view=tag&layout=edit&id=' . (int) ($this->item->id ?? 0)); ?>"
+      method="post" name="adminForm" id="adminForm" class="form-validate" aria-label="<?php echo $this->escape(Text::_('COM_MOKOOG_TAG_EDIT')); ?>">
+    <div class="row">
+        <div class="col-lg-9">
+            <?php echo HTMLHelper::_('uitab.startTabSet', 'mokoogTab', ['active' => 'details']); ?>
+
+            <?php echo HTMLHelper::_('uitab.addTab', 'mokoogTab', 'details', Text::_('COM_MOKOOG_TAB_DETAILS')); ?>
+                <?php echo $this->form->renderFieldset('details'); ?>
+            <?php echo HTMLHelper::_('uitab.endTab'); ?>
+
+            <?php echo HTMLHelper::_('uitab.addTab', 'mokoogTab', 'seo', Text::_('COM_MOKOOG_FIELDSET_SEO')); ?>
+                <?php echo $this->form->renderFieldset('seo'); ?>
+            <?php echo HTMLHelper::_('uitab.endTab'); ?>
+
+            <?php echo HTMLHelper::_('uitab.endTabSet'); ?>
+        </div>
+    </div>
+
+    <input type="hidden" name="task" value="">
+    <?php echo HTMLHelper::_('form.token'); ?>
+</form>
diff --git a/source/packages/com_mokoog/tmpl/tags/coverage.php b/source/packages/com_mokoog/tmpl/tags/coverage.php
deleted file mode 100644
index 931039d..0000000
--- a/source/packages/com_mokoog/tmpl/tags/coverage.php
+++ /dev/null
@@ -1,58 +0,0 @@
-<?php
-
-/**
- * @package     MokoSuiteOpenGraph
- * @subpackage  com_mokoog
- * @author      Moko Consulting <hello@mokoconsulting.tech>
- * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
- * @license     GNU General Public License version 3 or later; see LICENSE
- */
-
-defined('_JEXEC') or die;
-
-use Joomla\CMS\Factory;
-use Joomla\CMS\Language\Text;
-
-$db = Factory::getContainer()->get(\Joomla\Database\DatabaseInterface::class);
-
-// Total published articles
-$db->setQuery($db->getQuery(true)->select('COUNT(*)')->from('#__content')->where('state = 1'));
-$totalArticles = (int) $db->loadResult();
-
-// Articles with OG tags
-$db->setQuery($db->getQuery(true)->select('COUNT(DISTINCT content_id)')->from('#__mokoog_tags')->where("content_type = 'com_content'")->where('published = 1'));
-$articlesWithOg = (int) $db->loadResult();
-
-// Articles missing OG data fields
-$db->setQuery($db->getQuery(true)->select('COUNT(*)')->from('#__mokoog_tags')->where("content_type = 'com_content'")->where("og_title = ''")->where('published = 1'));
-$missingTitle = (int) $db->loadResult();
-
-$db->setQuery($db->getQuery(true)->select('COUNT(*)')->from('#__mokoog_tags')->where("content_type = 'com_content'")->where("og_description = ''")->where('published = 1'));
-$missingDesc = (int) $db->loadResult();
-
-$db->setQuery($db->getQuery(true)->select('COUNT(*)')->from('#__mokoog_tags')->where("content_type = 'com_content'")->where("og_image = ''")->where('published = 1'));
-$missingImage = (int) $db->loadResult();
-
-$coverage = $totalArticles > 0 ? round(($articlesWithOg / $totalArticles) * 100) : 0;
-?>
-<div class="mokoog-coverage card mb-3">
-    <div class="card-body">
-        <h4 class="card-title"><?php echo Text::_('COM_MOKOOG_COVERAGE_TITLE'); ?></h4>
-        <div class="row">
-            <div class="col-md-3 text-center">
-                <div class="display-4 <?php echo $coverage >= 80 ? 'text-success' : ($coverage >= 50 ? 'text-warning' : 'text-danger'); ?>">
-                    <?php echo $coverage; ?>%
-                </div>
-                <small class="text-muted"><?php echo Text::_('COM_MOKOOG_COVERAGE_PERCENT'); ?></small>
-            </div>
-            <div class="col-md-9">
-                <ul class="list-unstyled">
-                    <li><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_ARTICLES', $articlesWithOg, $totalArticles); ?></li>
-                    <li><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_TITLE', $missingTitle); ?></li>
-                    <li><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_DESC', $missingDesc); ?></li>
-                    <li><?php echo Text::sprintf('COM_MOKOOG_COVERAGE_MISSING_IMAGE', $missingImage); ?></li>
-                </ul>
-            </div>
-        </div>
-    </div>
-</div>
diff --git a/source/packages/com_mokoog/tmpl/tags/default.php b/source/packages/com_mokoog/tmpl/tags/default.php
index f3a3ad0..77e8c56 100644
--- a/source/packages/com_mokoog/tmpl/tags/default.php
+++ b/source/packages/com_mokoog/tmpl/tags/default.php
@@ -21,7 +21,6 @@ use Joomla\CMS\Session\Session;
 
 $token = Session::getFormToken();
 ?>
-<?php include __DIR__ . '/coverage.php'; ?>
 <form action="<?php echo Route::_('index.php?option=com_mokoog&view=tags'); ?>" method="post" name="adminForm" id="adminForm">
     <div class="row">
         <div class="col-md-12">
@@ -85,7 +84,9 @@ $token = Session::getFormToken();
                                         <?php echo (int) $item->content_id; ?>
                                     </td>
                                     <td>
-                                        <?php echo $this->escape($item->og_title ?: '(' . Text::_('COM_MOKOOG_AUTO_GENERATED') . ')'); ?>
+                                        <a href="<?php echo Route::_('index.php?option=com_mokoog&task=tag.edit&id=' . (int) $item->id); ?>" title="<?php echo Text::_('JACTION_EDIT'); ?>">
+                                            <?php echo $this->escape($item->og_title ?: '(' . Text::_('COM_MOKOOG_AUTO_GENERATED') . ')'); ?>
+                                        </a>
                                     </td>
                                     <td>
                                         <?php if ($item->og_image) : ?>
@@ -171,6 +172,23 @@ $token = Session::getFormToken();
     </div>
 </div>
 
+<!-- CSV Import -->
+<div id="mokoog-import-panel" style="display:none;" class="card mt-3">
+    <div class="card-body">
+        <h4><?php echo Text::_('COM_MOKOOG_TOOLBAR_IMPORT'); ?></h4>
+        <form action="<?php echo Route::_('index.php?option=com_mokoog&task=importexport.import'); ?>" method="post" enctype="multipart/form-data" class="mt-2">
+            <div class="mb-2">
+                <input type="file" name="jform[csv_file]" accept=".csv" class="form-control" required>
+            </div>
+            <button type="submit" class="btn btn-primary">
+                <span class="icon-upload" aria-hidden="true"></span>
+                <?php echo Text::_('COM_MOKOOG_TOOLBAR_IMPORT'); ?>
+            </button>
+            <?php echo HTMLHelper::_('form.token'); ?>
+        </form>
+    </div>
+</div>
+
 <script>
 document.addEventListener('DOMContentLoaded', function() {
     // Intercept the batch.generate toolbar button
@@ -180,6 +198,13 @@ document.addEventListener('DOMContentLoaded', function() {
             mokoogBatchGenerate();
             return;
         }
+        if (task === 'mokoog.showimport') {
+            var ip = document.getElementById('mokoog-import-panel');
+            if (ip) {
+                ip.style.display = (ip.style.display === 'none' ? 'block' : 'none');
+            }
+            return;
+        }
         if (origSubmitbutton) {
             origSubmitbutton(task);
         }
diff --git a/source/packages/plg_content_mokoog/mokoog.xml b/source/packages/plg_content_mokoog/mokoog.xml
index c2359ac..2961f55 100644
--- a/source/packages/plg_content_mokoog/mokoog.xml
+++ b/source/packages/plg_content_mokoog/mokoog.xml
@@ -8,7 +8,7 @@
  -->
 <extension type="plugin" group="content" method="upgrade">
     <name>Content - MokoSuiteOpenGraph</name>
-    <version>01.06.00</version>
+    <version>01.06.13</version>
     <creationDate>2026-05-23</creationDate>
     <author>Moko Consulting</author>
     <authorEmail>hello@mokoconsulting.tech</authorEmail>
diff --git a/source/packages/plg_content_mokoog/src/Extension/MokoOGContent.php b/source/packages/plg_content_mokoog/src/Extension/MokoOGContent.php
index 91550d7..c7a792b 100644
--- a/source/packages/plg_content_mokoog/src/Extension/MokoOGContent.php
+++ b/source/packages/plg_content_mokoog/src/Extension/MokoOGContent.php
@@ -322,7 +322,14 @@ final class MokoOGContent extends CMSPlugin implements SubscriberInterface
     {
         $json = trim($json);
 
-        if ($json === '' || json_decode($json) === null) {
+        if ($json === '') {
+            return '';
+        }
+
+        // Only accept JSON objects/arrays. Scalars (42, "x", true) decode to a
+        // non-null value but would crash the frontend renderer when treated as
+        // an array (writing $decoded['@context'] onto a scalar is a fatal error).
+        if (!\is_array(json_decode($json, true))) {
             return '';
         }
 
diff --git a/source/packages/plg_system_mokoog/mokoog.xml b/source/packages/plg_system_mokoog/mokoog.xml
index c0bba68..d5b0b40 100644
--- a/source/packages/plg_system_mokoog/mokoog.xml
+++ b/source/packages/plg_system_mokoog/mokoog.xml
@@ -8,7 +8,7 @@
  -->
 <extension type="plugin" group="system" method="upgrade">
     <name>System - MokoSuiteOpenGraph</name>
-    <version>01.06.00</version>
+    <version>01.06.13</version>
     <creationDate>2026-05-23</creationDate>
     <author>Moko Consulting</author>
     <authorEmail>hello@mokoconsulting.tech</authorEmail>
diff --git a/source/packages/plg_system_mokoog/src/Extension/MokoOG.php b/source/packages/plg_system_mokoog/src/Extension/MokoOG.php
index b472a9a..38d661c 100644
--- a/source/packages/plg_system_mokoog/src/Extension/MokoOG.php
+++ b/source/packages/plg_system_mokoog/src/Extension/MokoOG.php
@@ -139,7 +139,7 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
         }
 
         // og:locale from current language
-        $langTag   = Factory::getLanguage()->getTag();
+        $langTag   = $this->getApplication()->getLanguage()->getTag();
         $ogLocale  = str_replace('-', '_', $langTag);
         $doc->setMetaData('og:locale', $ogLocale, 'property');
 
@@ -358,7 +358,9 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
             if (!empty($customSchema)) {
                 $decoded = json_decode($customSchema, true);
 
-                if ($decoded) {
+                // Guard against scalar/invalid payloads — only arrays/objects are
+                // valid JSON-LD. Writing an array offset onto a scalar is fatal.
+                if (\is_array($decoded) && $decoded !== []) {
                     if (empty($decoded['@context'])) {
                         $decoded['@context'] = 'https://schema.org';
                     }
@@ -474,7 +476,7 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
             ->where($db->quoteName('content_type') . ' = ' . $db->quote($option))
             ->where($db->quoteName('content_id') . ' = ' . (int) $id)
             ->where($db->quoteName('published') . ' = 1')
-            ->where('(' . $db->quoteName('language') . ' = ' . $db->quote(Factory::getLanguage()->getTag())
+            ->where('(' . $db->quoteName('language') . ' = ' . $db->quote($this->getApplication()->getLanguage()->getTag())
                 . ' OR ' . $db->quoteName('language') . ' = ' . $db->quote('*') . ')')
             ->order('CASE WHEN ' . $db->quoteName('language') . ' = ' . $db->quote('*') . ' THEN 1 ELSE 0 END ASC');
 
@@ -494,7 +496,7 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
     private function loadOgDataByType(string $contentType, int $contentId): ?object
     {
         $db   = Factory::getContainer()->get(\Joomla\Database\DatabaseInterface::class);
-        $lang = Factory::getLanguage()->getTag();
+        $lang = $this->getApplication()->getLanguage()->getTag();
 
         $query = $db->getQuery(true)
             ->select('*')
@@ -521,7 +523,7 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
     private function loadOgDataByMenu(int $menuId): ?object
     {
         $db   = Factory::getContainer()->get(\Joomla\Database\DatabaseInterface::class);
-        $lang = Factory::getLanguage()->getTag();
+        $lang = $this->getApplication()->getLanguage()->getTag();
 
         $query = $db->getQuery(true)
             ->select('*')
@@ -670,7 +672,9 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
     {
         static $cache = [];
 
-        if (isset($cache[$id])) {
+        // array_key_exists (not isset) so a negative lookup (null) is also cached
+        // and not re-queried on every call within the request.
+        if (\array_key_exists($id, $cache)) {
             return $cache[$id];
         }
 
@@ -702,8 +706,15 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
     private function getArticleDate(int $id, string $field): string
     {
         $article = $this->loadArticle($id);
+        $value   = $article->$field ?? '';
 
-        return $article->$field ?? '';
+        // Skip zero/empty dates — emitting "0000-00-00 00:00:00" as
+        // article:published_time/modified_time produces invalid metadata.
+        if ($value === '' || str_starts_with($value, '0000-00-00')) {
+            return '';
+        }
+
+        return $value;
     }
 
     /**
@@ -820,6 +831,10 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
      */
     public function onContentAfterSaveRebuildSitemap(Event $event): void
     {
+        // Opportunistic maintenance on content save: prune stale generated images
+        // so the generated-image cache cannot grow without bound.
+        ImageHelper::pruneOldFiles();
+
         if (!$this->params->get('sitemap_enabled', 0)) {
             return;
         }
@@ -858,6 +873,14 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
             return;
         }
 
+        // Require article-edit capability — this triggers outbound paid AI calls,
+        // so it must not be reachable by every authenticated back-end user.
+        if (!$app->getIdentity()->authorise('core.edit', 'com_content')
+            && !$app->getIdentity()->authorise('core.create', 'com_content')) {
+            $event->setArgument('result', ['Forbidden — insufficient permissions']);
+            return;
+        }
+
         if (!$this->params->get('ai_enabled', 0)) {
             $event->setArgument('result', ['AI generation is not enabled']);
             return;
@@ -902,6 +925,9 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
     {
         $http = \Joomla\CMS\Http\HttpFactory::getHttp();
 
+        // Cap how long a hung provider can block the admin request.
+        $timeout = 20;
+
         if ($provider === 'claude') {
             $response = $http->post(
                 'https://api.anthropic.com/v1/messages',
@@ -914,9 +940,14 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
                     'Content-Type'      => 'application/json',
                     'x-api-key'         => $apiKey,
                     'anthropic-version'  => '2023-06-01',
-                ]
+                ],
+                $timeout
             );
 
+            if ((int) $response->code !== 200) {
+                throw new \RuntimeException('Claude API request failed (HTTP ' . (int) $response->code . ')');
+            }
+
             $data = json_decode($response->body, true);
 
             return trim($data['content'][0]['text'] ?? '');
@@ -932,9 +963,14 @@ final class MokoOG extends CMSPlugin implements SubscriberInterface
             [
                 'Content-Type'  => 'application/json',
                 'Authorization' => 'Bearer ' . $apiKey,
-            ]
+            ],
+            $timeout
         );
 
+        if ((int) $response->code !== 200) {
+            throw new \RuntimeException('OpenAI API request failed (HTTP ' . (int) $response->code . ')');
+        }
+
         $data = json_decode($response->body, true);
 
         return trim($data['choices'][0]['message']['content'] ?? '');
diff --git a/source/packages/plg_system_mokoog/src/Helper/ImageGenerator.php b/source/packages/plg_system_mokoog/src/Helper/ImageGenerator.php
deleted file mode 100644
index 7a16305..0000000
--- a/source/packages/plg_system_mokoog/src/Helper/ImageGenerator.php
+++ /dev/null
@@ -1,182 +0,0 @@
-<?php
-
-/**
- * @package     MokoSuiteOpenGraph
- * @subpackage  plg_system_mokoog
- * @author      Moko Consulting <hello@mokoconsulting.tech>
- * @copyright   Copyright (C) 2026 Moko Consulting. All rights reserved.
- * @license     GNU General Public License version 3 or later; see LICENSE
- */
-
-namespace Joomla\Plugin\System\MokoOG\Helper;
-
-defined('_JEXEC') or die;
-
-use Joomla\CMS\Filesystem\Folder;
-use Joomla\CMS\Log\Log;
-
-class ImageGenerator
-{
-    private const WIDTH = 1200;
-    private const HEIGHT = 630;
-    private const OUTPUT_DIR = 'images/mokoog/generated';
-
-    /**
-     * Generate an OG image with title text overlaid on a template background.
-     *
-     * @param   string  $title           Article title to overlay
-     * @param   string  $templateImage   Path to template/background image relative to JPATH_ROOT
-     * @param   string  $fontFile        Absolute path to TTF font file
-     * @param   int     $fontSize        Font size in points (default 42)
-     * @param   array   $fontColor       RGB array [r, g, b] (default white)
-     * @param   int     $quality         JPEG quality (default 90)
-     *
-     * @return  string  Path to generated image relative to JPATH_ROOT, or empty on failure
-     */
-    public static function generate(
-        string $title,
-        string $templateImage,
-        string $fontFile = '',
-        int $fontSize = 42,
-        array $fontColor = [255, 255, 255],
-        int $quality = 90
-    ): string {
-        if (!\extension_loaded('gd')) {
-            Log::add('MokoOG ImageGenerator: GD extension is not loaded. Image generation disabled.', Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        $templateAbs = JPATH_ROOT . '/' . ltrim($templateImage, '/');
-
-        if (!is_file($templateAbs)) {
-            Log::add('MokoOG ImageGenerator: Template image not found: ' . $templateImage, Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        if (!$fontFile || !is_file($fontFile)) {
-            Log::add('MokoOG ImageGenerator: TTF font file not found: ' . ($fontFile ?: '(not configured)'), Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        $outputDir = JPATH_ROOT . '/' . self::OUTPUT_DIR;
-
-        if (!is_dir($outputDir) && !Folder::create($outputDir)) {
-            Log::add('MokoOG ImageGenerator: Cannot create output directory: ' . self::OUTPUT_DIR, Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        $hash       = md5($title . $templateImage . $fontSize);
-        $outputName = 'overlay_' . $hash . '.jpg';
-        $outputPath = $outputDir . '/' . $outputName;
-        $outputRel  = self::OUTPUT_DIR . '/' . $outputName;
-
-        // Skip if already generated
-        if (is_file($outputPath)) {
-            return $outputRel;
-        }
-
-        // Load template image
-        $imageInfo = getimagesize($templateAbs);
-
-        if (!$imageInfo) {
-            Log::add('MokoOG ImageGenerator: Cannot read image dimensions: ' . $templateImage, Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        $source = match ($imageInfo[2]) {
-            IMAGETYPE_JPEG => imagecreatefromjpeg($templateAbs),
-            IMAGETYPE_PNG  => imagecreatefrompng($templateAbs),
-            IMAGETYPE_WEBP => function_exists('imagecreatefromwebp') ? imagecreatefromwebp($templateAbs) : false,
-            default        => false,
-        };
-
-        if (!$source) {
-            Log::add('MokoOG ImageGenerator: Failed to load image (unsupported type or corrupt): ' . $templateImage, Log::WARNING, 'mokoog');
-
-            return '';
-        }
-
-        // Create output canvas at target dimensions
-        $canvas = imagecreatetruecolor(self::WIDTH, self::HEIGHT);
-
-        imagecopyresampled(
-            $canvas,
-            $source,
-            0, 0, 0, 0,
-            self::WIDTH, self::HEIGHT,
-            $imageInfo[0], $imageInfo[1]
-        );
-
-        imagedestroy($source);
-
-        // Semi-transparent overlay for text readability
-        $overlay = imagecolorallocatealpha($canvas, 0, 0, 0, 64);
-        imagefilledrectangle($canvas, 0, (int) (self::HEIGHT * 0.55), self::WIDTH, self::HEIGHT, $overlay);
-
-        // Render title text with word wrapping
-        $textColor = imagecolorallocate($canvas, $fontColor[0], $fontColor[1], $fontColor[2]);
-        $wrappedTitle = self::wrapText($title, $fontFile, $fontSize, (int) (self::WIDTH * 0.85));
-        $textX = (int) (self::WIDTH * 0.075);
-        $textY = (int) (self::HEIGHT * 0.72);
-
-        imagettftext($canvas, $fontSize, 0, $textX, $textY, $textColor, $fontFile, $wrappedTitle);
-
-        // Save
-        imagejpeg($canvas, $outputPath, $quality);
-        imagedestroy($canvas);
-
-        return $outputRel;
-    }
-
-    /**
-     * Wrap text to fit within a maximum pixel width.
-     *
-     * @param   string  $text      Text to wrap
-     * @param   string  $fontFile  Path to TTF font
-     * @param   int     $fontSize  Font size in points
-     * @param   int     $maxWidth  Maximum width in pixels
-     *
-     * @return  string  Wrapped text with newlines
-     */
-    private static function wrapText(string $text, string $fontFile, int $fontSize, int $maxWidth): string
-    {
-        $words  = explode(' ', $text);
-        $lines  = [];
-        $line   = '';
-
-        foreach ($words as $word) {
-            $testLine = $line ? $line . ' ' . $word : $word;
-            $bbox     = imagettfbbox($fontSize, 0, $fontFile, $testLine);
-            $lineWidth = abs($bbox[4] - $bbox[0]);
-
-            if ($lineWidth > $maxWidth && $line !== '') {
-                $lines[] = $line;
-                $line    = $word;
-            } else {
-                $line = $testLine;
-            }
-        }
-
-        if ($line !== '') {
-            $lines[] = $line;
-        }
-
-        // Limit to 3 lines, truncate last line if needed
-        if (\count($lines) > 3) {
-            $lines = \array_slice($lines, 0, 3);
-
-            if (mb_strlen($lines[2]) > 3) {
-                $lines[2] = mb_substr($lines[2], 0, -3) . '...';
-            } else {
-                $lines[2] .= '...';
-            }
-        }
-
-        return implode("\n", $lines);
-    }
-}
diff --git a/source/packages/plg_system_mokoog/src/Helper/ImageHelper.php b/source/packages/plg_system_mokoog/src/Helper/ImageHelper.php
index 2aaf5e9..c8f4e65 100644
--- a/source/packages/plg_system_mokoog/src/Helper/ImageHelper.php
+++ b/source/packages/plg_system_mokoog/src/Helper/ImageHelper.php
@@ -12,8 +12,8 @@ namespace Joomla\Plugin\System\MokoOG\Helper;
 
 defined('_JEXEC') or die;
 
-use Joomla\CMS\Filesystem\File;
-use Joomla\CMS\Filesystem\Folder;
+use Joomla\Filesystem\File;
+use Joomla\Filesystem\Folder;
 use Joomla\CMS\Log\Log;
 
 class ImageHelper
@@ -300,6 +300,39 @@ class ImageHelper
         }
     }
 
+    /**
+     * Prune generated images older than the given age, to bound disk usage.
+     *
+     * The generated-image cache is never otherwise cleaned, so without this it
+     * grows unbounded over time.
+     *
+     * @param   int  $maxAgeDays  Delete generated files older than this (default 30)
+     *
+     * @return  void
+     */
+    public static function pruneOldFiles(int $maxAgeDays = 30): void
+    {
+        $dir = JPATH_ROOT . '/' . self::OUTPUT_DIR;
+
+        if (!is_dir($dir)) {
+            return;
+        }
+
+        $cutoff = time() - ($maxAgeDays * 86400);
+
+        $iterator = new \RecursiveIteratorIterator(
+            new \RecursiveDirectoryIterator($dir, \FilesystemIterator::SKIP_DOTS)
+        );
+
+        foreach ($iterator as $file) {
+            if ($file->isFile()
+                && $file->getFilename() !== 'index.html'
+                && $file->getMTime() < $cutoff) {
+                File::delete($file->getPathname());
+            }
+        }
+    }
+
     /**
      * Check if an image meets minimum OG size requirements.
      *
diff --git a/source/packages/plg_system_mokoog/src/Helper/JsonLdBuilder.php b/source/packages/plg_system_mokoog/src/Helper/JsonLdBuilder.php
index dbb3a6b..cd77c8f 100644
--- a/source/packages/plg_system_mokoog/src/Helper/JsonLdBuilder.php
+++ b/source/packages/plg_system_mokoog/src/Helper/JsonLdBuilder.php
@@ -142,23 +142,6 @@ class JsonLdBuilder
         ];
     }
 
-    /**
-     * Build Organization schema from site configuration.
-     *
-     * @param   string  $siteName  Site name
-     *
-     * @return  array
-     */
-    public static function buildOrganization(string $siteName): array
-    {
-        return [
-            '@context' => 'https://schema.org',
-            '@type'    => 'Organization',
-            'name'     => $siteName,
-            'url'      => Uri::root(),
-        ];
-    }
-
     /**
      * Build Product schema for a MokoSuiteShop product.
      *
diff --git a/source/packages/plg_system_mokoog/src/Helper/SitemapBuilder.php b/source/packages/plg_system_mokoog/src/Helper/SitemapBuilder.php
index 9f30300..45b4040 100644
--- a/source/packages/plg_system_mokoog/src/Helper/SitemapBuilder.php
+++ b/source/packages/plg_system_mokoog/src/Helper/SitemapBuilder.php
@@ -37,12 +37,20 @@ class SitemapBuilder
 
         $db = Factory::getContainer()->get(\Joomla\Database\DatabaseInterface::class);
 
+        // Only include content the public (guest, user id 0) can view — never
+        // leak registered/special-access articles into the public sitemap.
+        $publicLevels = array_map('intval', \Joomla\CMS\Access\Access::getAuthorisedViewLevels(0));
+
         // Get all published articles
         $query = $db->getQuery(true)
             ->select($db->quoteName(['a.id', 'a.alias', 'a.catid', 'a.modified', 'a.language']))
             ->from($db->quoteName('#__content', 'a'))
             ->where($db->quoteName('a.state') . ' = 1');
 
+        if (!empty($publicLevels)) {
+            $query->where($db->quoteName('a.access') . ' IN (' . implode(',', $publicLevels) . ')');
+        }
+
         $db->setQuery($query);
         $articles = $db->loadObjectList();
 
@@ -104,7 +112,19 @@ class SitemapBuilder
     public static function writeToFile(string $xml): bool
     {
         $path = JPATH_ROOT . '/sitemap.xml';
+        $tmp  = $path . '.' . uniqid('tmp', true);
 
-        return (bool) file_put_contents($path, $xml);
+        if (file_put_contents($tmp, $xml) === false) {
+            return false;
+        }
+
+        // Atomic replace so concurrent saves never expose a half-written sitemap.
+        if (!@rename($tmp, $path)) {
+            @unlink($tmp);
+
+            return false;
+        }
+
+        return true;
     }
 }
diff --git a/source/packages/plg_webservices_mokoog/mokoog.xml b/source/packages/plg_webservices_mokoog/mokoog.xml
index 9b34d07..5636b78 100644
--- a/source/packages/plg_webservices_mokoog/mokoog.xml
+++ b/source/packages/plg_webservices_mokoog/mokoog.xml
@@ -8,7 +8,7 @@
  -->
 <extension type="plugin" group="webservices" method="upgrade">
     <name>Web Services - MokoSuiteOpenGraph</name>
-    <version>01.06.00</version>
+    <version>01.06.13</version>
     <creationDate>2026-05-23</creationDate>
     <author>Moko Consulting</author>
     <authorEmail>hello@mokoconsulting.tech</authorEmail>
diff --git a/source/pkg_mokoog.xml b/source/pkg_mokoog.xml
index 6237414..cca3faf 100644
--- a/source/pkg_mokoog.xml
+++ b/source/pkg_mokoog.xml
@@ -8,7 +8,7 @@
 <extension type="package" method="upgrade">
     <name>Package - MokoSuiteOpenGraph</name>
     <packagename>mokoog</packagename>
-    <version>01.06.00</version>
+    <version>01.06.13</version>
     <creationDate>2026-05-23</creationDate>
     <author>Moko Consulting</author>
     <authorEmail>hello@mokoconsulting.tech</authorEmail>
@@ -31,7 +31,7 @@
     </languages>
 
     <updateservers>
-        <server type="extension" name="MokoSuiteOpenGraph Updates">https://git.mokoconsulting.tech/MokoConsulting/MokoSuiteOpenGraph/updates.xml</server>
+        <server type="extension" name="MokoSuiteOpenGraph Updates">https://git.mokoconsulting.tech/api/packages/MokoConsulting/generic/MokoSuiteOpenGraph/latest/updates.xml</server>
     </updateservers>
     <dlid prefix="dlid=" suffix=""/>
     <blockChildUninstall>true</blockChildUninstall>