Audit Result

Found 41 characters. Length is optimal.

Found 73 characters. Good snippet length.

Canonical found: https://markflowai.com

Favicon found and reachable: /favicon.ico?favicon.c15c84ee.ico (HTTP 200).

Viewport configured: width=device-width, initial-scale=1

Language declared as "en".

Exactly one H1 found: "All Your Bookmarks Finally In One Place".

Valid heading flow across 10 headings.

All 4 images include alt text.

Page is served over HTTPS.

1 HTTPS hardening issues detected.

• • Could not probe the HTTP version of this page.
• • Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.

Core security headers were detected.

2 CSP hardening issues detected.

• • script-src/default-src permits 'unsafe-inline'.
• • script-src/default-src permits 'unsafe-eval'.
• • Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.clerk.accounts.dev https://*.clerk.com https://challenges.cloudflare.com; style-src 'self' 'unsafe-inline' https://*.clerk.accounts.dev https://*.clerk.com; img-src 'self' data: https: blob:; font-src 'self' data: https://*.clerk.accounts.dev https://*.clerk.com; connect-src 'self' https://*.convex.cloud https://*.convex.site https://*.clerk.accounts.dev https://*.clerk.com https://challenges.cloudflare.com wss://*.convex.cloud https://*.posthog.com https://*.i.posthog.com; worker-src blob:; frame-src 'self' https://*.clerk.accounts.dev https://*.clerk.com https://challenges.cloudflare.com; frame-ancestors 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests; report-uri /api/csp-report

Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.

No first-party cookies were set during the initial page load.

Server response headers do not expose version tokens.

Domain does not appear to be behind Cloudflare.

Loaded in 2.00s (perceived).

Fix: Reduce payload size, cache static assets, and remove non-critical JS from initial load.

4 scripts and 3 styles may block rendering.

• • script: https://markflowai.com/_next/static/chunks/a6dad97d9634a72d.js
• • script: https://markflowai.com/_next/static/chunks/df8ff41123d267a9.js
• • script: https://markflowai.com/_next/static/chunks/5b661df3c46de737.js
• • script: https://markflowai.com/_next/static/chunks/14ae9dc42aecb9d2.js
• • style: https://markflowai.com/_next/static/chunks/98fb44246d6a3f3c.css
• • style: https://markflowai.com/_next/static/chunks/df11a8d591847fed.css
• • style: https://markflowai.com/_next/static/chunks/7335362783056dc8.css

Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.

3 text resources look uncompressed.

• • https://markflowai.com/_next/static/chunks/8f7f9a62526f107d.js (application/javascript; charset=UTF-8)
• • blob:https://markflowai.com/d8f9533e-b060-439e-a6a7-f13dc71a6531 (application/javascript; charset=utf-8)
• • blob:https://markflowai.com/f879351d-6354-4485-8892-f6d86076f119 (application/javascript; charset=utf-8)

Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.

robots.txt missing or inaccessible (404).

Fix: Create a robots.txt file at https://markflowai.com/robots.txt and allow intended crawlers.

Sitemap missing or inaccessible at https://markflowai.com/sitemap.xml (404).

Fix: Publish a sitemap.xml and reference it in robots.txt with: Sitemap: https://markflowai.com/sitemap.xml

Robots meta found: index, follow

All 2 controls are labeled.

Header, nav, main, and footer landmarks are present.

4 interactive elements appear smaller than 48px.

• • button.p-3.rounded-full (Toggle Theme) - 44x44px
• • button.px-4.py-2 (Subscribe) - 106x44px
• • button.inline-flex.items-center (Reject) - 77x44px
• • button.inline-flex.items-center (Accept) - 80x44px

Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.

Core Open Graph tags are present.

og:image is present and absolute.

twitter:card set to summary_large_image.

No JSON-LD schema scripts found.

Fix: Add JSON-LD structured data matching your page type (Organization, Article, Product, etc.).

Manifest and Apple touch icon are configured.

Social preview metadata and image quality look good for Open Graph/Twitter.

• • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
• • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
• • GUIDELINE: Optimal preview image size: 1200x630 pixels.
• • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
• • GUIDELINE: Optimal preview image file size: under 5 MB.
• • GUIDELINE: Recommended twitter:card: summary_large_image.
• • MEASURED: Image size: 1.85 MB
• • MEASURED: Image dimensions: 4800x2520

Checked 2 links. No broken internal links found.

1 external links returned errors or timed out.

• • https://linkedin.com/company/markflowai (HTTP 404)

Fix: Replace dead external URLs or point to working alternatives.

All 2 links use non-empty href values.

Largest Contentful Paint: 2.00s.

Cumulative Layout Shift: 0.000.

Total Blocking Time estimate: 24ms.

No failed CSS/JS/image/font/media requests detected.

No console/page runtime errors detected during audit.