In the BPA report, "Rule Detail" tab - Export option at the bottom was not exporting all the Security rules. This issue has been fixed and the export captures all the rules.
On 10.0 PanOS versions the best practice check 'Enable Packet Buffer Protection' was failing. This was happening due to change in xpath config and we have updated so this check is processed as expected and provide the correct result.
We have added a new column for DNS Security feature so a user can validate if the necessary security rules have DNS Security enabled and identify the security gaps.