Audit Result

UUID: 019ed63b-79e4-728d-ad9d-b64edbea91a4

ralle.app

https://ralle.app/

Scanned 1 month ago

85
Excellent Score
39 total checks
Passed
28
Warnings
10
Errors
1

Meta Information

  • Title Tag Pass

    Found 41 characters. Length is optimal.

  • Found 178 characters. Keep description around 70-160 characters.

    Fix: Add <meta name="description" content="..."> in <head> with a clear page summary.

  • Canonical found: https://ralle.app

  • Favicon Pass

    Favicon found and reachable: /favicon.ico (HTTP 200).

    Favicon
  • Viewport configured: width=device-width, initial-scale=1, maximum-scale=1

  • HTML Lang Pass

    Language declared as "en".

Content Structure

  • H1 Tag Pass

    Exactly one H1 found: "Less texting. More tennis.".

  • Valid heading flow across 20 headings.

  • 1 of 6 images are missing alt text.

    Fix: Add meaningful alt attributes to all informative images for accessibility and image SEO.

Technical Optimization

  • HTTPS Pass

    Page is served over HTTPS.

  • 2 HTTPS hardening issues detected.

    • • HSTS is missing includeSubDomains.
    • • Could not probe the HTTP version of this page.
    • • Strict-Transport-Security: max-age=63072000

    Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.

  • Missing: content-security-policy.

    Full HTTP headers (22)
    • • access-control-allow-origin: *
    • • age: 1500
    • • cache-control: public, max-age=0, must-revalidate
    • • content-disposition: inline
    • • content-encoding: br
    • • content-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://va.vercel-scripts.com https://*.vercel-scripts.com https://www.googletagmanager.com https://www.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https: wss:; frame-ancestors 'none'; object-src 'none'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests; report-uri /api/csp-report; report-to csp-endpoint
    • • content-type: text/html; charset=utf-8
    • • date: Wed, 17 Jun 2026 15:38:00 GMT
    • • etag: W/"76be6486c65fb4bede02971f79d95464"
    • • permissions-policy: camera=(), microphone=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=(), browsing-topics=()
    • • referrer-policy: strict-origin-when-cross-origin
    • • reporting-endpoints: csp-endpoint="/api/csp-report"
    • • server: Vercel
    • • strict-transport-security: max-age=63072000
    • • vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
    • • x-content-type-options: nosniff
    • • x-frame-options: DENY
    • • x-matched-path: /
    • • x-nextjs-prerender: 1
    • • x-nextjs-stale-time: 300
    • • x-vercel-cache: HIT
    • • x-vercel-id: iad1::ksgmw-1781710680226-8ec09c7a80b6

    Fix: Add the missing security headers at your reverse proxy or application layer.

  • CSP Quality Warning

    Content-Security-Policy header is missing.

    • • Missing Content-Security-Policy header.

    Fix: Define a restrictive Content-Security-Policy and avoid unsafe directives such as unsafe-inline and unsafe-eval.

  • No first-party cookies were set during the initial page load.

  • Server response headers do not expose version tokens.

  • Domain does not appear to be behind Cloudflare.

  • Loaded in 0.35s (perceived).

  • 1 scripts and 3 styles may block rendering.

    • • script: https://ralle.app/_next/static/chunks/polyfills-42372ed130431b0a.js?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW
    • • style: https://ralle.app/_next/static/css/4ef9819bcb719f1e.css?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW
    • • style: https://ralle.app/_next/static/css/357b8d59e97fd442.css?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW
    • • style: https://ralle.app/_next/static/css/081a0afca5a9bd20.css?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW

    Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.

  • Compression Warning

    2 text resources look uncompressed.

    • • https://ralle.app/_next/static/chunks/main-app-1c9bb52dba4a9477.js?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW (application/javascript; charset=utf-8)
    • • https://ralle.app/_next/static/chunks/app/courts/page-ee9e8f86dc7af8ae.js?dpl=dpl_Dhc1fsvYpMUEKAha95DQMi6HeeKW (application/javascript; charset=utf-8)

    Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.

  • Robots.txt Pass

    Found robots.txt (200).

  • Found sitemap (200) at https://ralle.app/sitemap.xml.

  • Robots meta found: index, follow

Accessibility Basics

  • All 0 controls are labeled.

  • Landmarks Pass

    Header, nav, main, and footer landmarks are present.

  • Tap Target Size Warning

    17 interactive elements appear smaller than 48px.

    • • a.skip-link (Skip to content) - 116x24px
    • • a.hover:text-primary.transition-colors (Courts) - 51x24px
    • • a.hover:text-primary.transition-colors (Tournaments) - 102x24px
    • • a.hover:text-primary.transition-colors (Blog) - 34x24px
    • • a.hover:text-primary.transition-colors (About) - 47x24px
    • • a.hover:text-primary.transition-colors (Contact) - 59x24px
    • • a.hover:text-ralle-yellow (Courts) - 43x21px
    • • a.hover:text-ralle-yellow (Tournaments) - 86x21px
    • • a.hover:text-ralle-yellow (Blog) - 30x21px
    • • a.hover:text-ralle-yellow (About) - 39x21px
    • • a.hover:text-ralle-yellow (Contact) - 51x21px
    • • a.hover:text-ralle-yellow.inline-flex (Follow Us) - 87x21px
    • • a.hover:text-ralle-yellow (Privacy Policy) - 82x18px
    • • a.hover:text-ralle-yellow (Terms of Service) - 102x18px
    • • a.hover:text-ralle-yellow (Data Corrections) - 99x18px
    • • button.rounded-button.inline-flex (Decline) - 80x32px
    • • button.rounded-button.inline-flex (Accept) - 74x32px

    Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.

Social & Rich Results

  • Core Open Graph tags are present.

  • og:image is present and absolute.

    Open Graph Image
  • twitter:card set to summary_large_image.

  • JSON-LD schema detected.

  • Manifest and Apple touch icon are configured.

  • 1 social preview quality issues detected.

    • • ISSUE: Failed to fetch preview image: network error.
    • • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
    • • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
    • • GUIDELINE: Optimal preview image size: 1200x630 pixels.
    • • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
    • • GUIDELINE: Optimal preview image file size: under 5 MB.
    • • GUIDELINE: Recommended twitter:card: summary_large_image.

    Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.

Links Analysis

  • Checked 10 links. No broken internal links found.

  • No broken external links found in checked URLs.

  • All 22 links use non-empty href values.

Performance & Runtime

  • Largest Contentful Paint: 0.50s.

  • Cumulative Layout Shift: 0.000.

  • Total Blocking Time estimate: 37ms.

  • No failed CSS/JS/image/font/media requests detected.

  • 2 JavaScript runtime issues detected.

    • • Request failed: https://analytics.google.com/g/collect?v=2&tid=G-XLRKDMNP3X&gtm=45je66f1v9200466619z89223560838za20gzb9223560838zd9223560838&_p=1781710680494&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&ecid=924909446&_eu=AAAAAGAC&are=1&cid=203599459.1781710681&ec_mode=a&frm=0&pscdl=noapi&rcb=4&sr=1280x800&uaa=x86&uab=64&uafvl=Not%253AA-Brand%3B99.0.0.0%7CHeadlessChrome%3B145.0.7632.6%7CChromium%3B145.0.7632.6&uam=&uamb=0&uap=Linux&uapv=&uaw=0&ul=en-us&gaf=2&_s=1&tag_exp=115938465~115938468~119392696~119392704~119456239~119456247&sid=1781710680&sct=1&seg=0&dl=https%3A%2F%2Fralle.app%2F&dt=Tennis%20Team%20Coordination%20App%20for%20Captains&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=722 (net::ERR_ABORTED, type: fetch)
    • • The Content Security Policy directive 'upgrade-insecure-requests' is ignored when delivered in a report-only policy. [https://ralle.app/:1]

    Fix: Fix JS files returning 404/failed requests and resolve the listed runtime exceptions.