Audit Result
UUID: 019ebd6a-92f5-710f-b128-984484db6ddb
https://upskroll.com/
Scanned 1 month ago
Meta Information
-
Title Tag Pass
Found 49 characters. Length is optimal.
-
Meta Description Pass
Found 134 characters. Good snippet length.
-
Canonical URL Pass
Canonical found: https://upskroll.com
-
-
Viewport Meta Pass
Viewport configured: width=device-width, initial-scale=1
-
HTML Lang Pass
Language declared as "en-AU".
Content Structure
-
H1 Tag Pass
Exactly one H1 found: "Compliance-First Student Management".
-
Heading Hierarchy Pass
Valid heading flow across 30 headings.
-
Image Alt Text Pass
All 1 images include alt text.
Technical Optimization
-
HTTPS Pass
Page is served over HTTPS.
-
HSTS & HTTPS Redirect Warning
2 HTTPS hardening issues detected.
- • HSTS is missing includeSubDomains.
- • Could not probe the HTTP version of this page.
- • Strict-Transport-Security: max-age=63072000
Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.
-
Security Headers Warning
Missing: content-security-policy, x-frame-options, x-content-type-options, referrer-policy.
Full HTTP headers (16)
- • access-control-allow-origin: *
- • age: 440734
- • cache-control: public, max-age=0, must-revalidate
- • content-disposition: inline
- • content-encoding: br
- • content-type: text/html; charset=utf-8
- • date: Fri, 12 Jun 2026 19:58:53 GMT
- • etag: W/"8c9d2532d2aaa658e75a76cb3b047892"
- • server: Vercel
- • strict-transport-security: max-age=63072000
- • vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch
- • x-matched-path: /
- • x-nextjs-prerender: 1
- • x-nextjs-stale-time: 300
- • x-vercel-cache: HIT
- • x-vercel-id: iad1::7ffx2-1781294332744-724f26e83777
Fix: Add the missing security headers at your reverse proxy or application layer.
-
CSP Quality Warning
Content-Security-Policy header is missing.
- • Missing Content-Security-Policy header.
Fix: Define a restrictive Content-Security-Policy and avoid unsafe directives such as unsafe-inline and unsafe-eval.
-
Cookie Security Pass
No first-party cookies were set during the initial page load.
-
Server response headers do not expose version tokens.
-
Cloudflare Proxy Warning
Domain does not appear to be behind Cloudflare.
-
Perceived Load Time Pass
Loaded in 0.95s (perceived).
-
Render Blocking Resources Warning
1 scripts and 1 styles may block rendering.
- • script: https://upskroll.com/_next/static/chunks/polyfills-42372ed130431b0a.js
- • style: https://upskroll.com/_next/static/css/9731c423f64ac09e.css
Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.
-
Compression Warning
2 text resources look uncompressed.
- • https://upskroll.com/_next/static/chunks/main-app-1752470139d2f8a3.js (application/javascript; charset=utf-8)
- • https://upskroll.com/_next/static/chunks/app/privacy/page-6c327c1243f4a17c.js (application/javascript; charset=utf-8)
Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.
-
Robots.txt Pass
Found robots.txt (200).
-
Sitemap File Pass
Found sitemap (200) at https://upskroll.com/sitemap.xml.
-
Crawl Directives Pass
Robots meta found: index, follow
Accessibility Basics
-
Form Labels Pass
All 0 controls are labeled.
-
Landmarks Warning
Missing landmarks: header, main.
Fix: Use semantic regions (<header>, <nav>, <main>, <footer>) for navigation and assistive tech.
-
Tap Target Size Warning
15 interactive elements appear smaller than 48px.
- • a.lg:max-w-91.w-full (Upskroll) - 364x40px
- • a.text-sm.font-medium (Features) - 55x20px
- • a.text-sm.font-medium (About) - 37x20px
- • button.flex.items-center (Solutions) - 76x20px
- • a.text-sm.font-medium (Pricing) - 43x20px
- • button.flex.items-center (Resources) - 85x20px
- • button.cursor-pointer.inline-flex (Login) - 58x32px
- • a (Login) - 34x20px
- • button.cursor-pointer.inline-flex (Sign Up) - 74x32px
- • a (Sign Up) - 50x20px
- • button.cursor-pointer.inline-flex (Toggle theme) - 36x36px
- • button.cursor-pointer.items-center (Request Demo) - 160x36px
- • button.cursor-pointer.inline-flex (Accept Cookies) - 121x32px
- • button.cursor-pointer.inline-flex (Decline Optional Cookies) - 183x32px
- • button.flex-shrink-0.text-muted-foreground (Close cookie banner) - 20x20px
Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.
Social & Rich Results
-
Open Graph Basics Pass
Core Open Graph tags are present.
-
-
Twitter Card Pass
twitter:card set to summary_large_image.
-
Structured Data Pass
JSON-LD schema detected.
-
PWA Metadata Pass
Manifest and Apple touch icon are configured.
-
Open Graph/Twitter Quality Warning
1 social preview quality issues detected.
- • ISSUE: Failed to fetch preview image: network error.
- • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
- • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
- • GUIDELINE: Optimal preview image size: 1200x630 pixels.
- • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
- • GUIDELINE: Optimal preview image file size: under 5 MB.
- • GUIDELINE: Recommended twitter:card: summary_large_image.
Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.
Links Analysis
-
Internal Links Error
5 internal links returned errors.
- • https://upskroll.com/dashboard (HTTP 400)
- • https://upskroll.com/dashboard/students (HTTP 400)
- • https://upskroll.com/dashboard/courses (HTTP 400)
- • https://upskroll.com/dashboard/compliance/avetmiss-exports (HTTP 400)
- • https://upskroll.com/contact (HTTP 404)
Fix: Fix or remove the listed internal URLs, and ensure routes/pages return 200 responses.
-
External Links Pass
No broken external links found in checked URLs.
-
Link Format Pass
All 22 links use non-empty href values.
Performance & Runtime
-
Core Web Vitals: LCP Pass
Largest Contentful Paint: 1.15s.
-
Core Web Vitals: CLS Pass
Cumulative Layout Shift: 0.000.
-
Total Blocking Time estimate: 2ms.
-
Broken Assets Pass
No failed CSS/JS/image/font/media requests detected.
-
No console/page runtime errors detected during audit.