Audit Result

UUID: 019eda0f-a878-7253-8225-2d37cdd23eb5

lostcause.dev

https://lostcause.dev/

Scanned 4 weeks ago

94
Excellent Score
39 total checks
Passed
35
Warnings
3
Errors
1

Meta Information

  • Title Tag Pass

    Found 43 characters. Length is optimal.

  • Found 106 characters. Good snippet length.

  • Canonical found: https://lostcause.dev/

  • Favicon Pass

    Favicon found and reachable: /favicon.ico (HTTP 200).

    Favicon
  • Viewport configured: width=device-width, initial-scale=1

  • HTML Lang Pass

    Language declared as "en".

Content Structure

Technical Optimization

  • HTTPS Pass

    Page is served over HTTPS.

  • 1 HTTPS hardening issues detected.

    • • Could not probe the HTTP version of this page.
    • • Strict-Transport-Security: max-age=31536000; includeSubDomains

    Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.

  • Core security headers were detected.

    Full HTTP headers (19)
    • • access-control-allow-origin: *
    • • age: 173
    • • alt-svc: h3=":443"; ma=86400
    • • cache-control: public, max-age=0, s-maxage=2592000
    • • cf-cache-status: HIT
    • • cf-ray: a0d943d34933056c-IAD
    • • content-encoding: gzip
    • • content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self'; img-src 'self' data: https://queue.simpleanalyticscdn.com; font-src 'self' https://fonts.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' https://scripts.simpleanalyticscdn.com https://lostcause.stats.fiveem.com; connect-src 'self' https://queue.simpleanalyticscdn.com https://scripts.simpleanalyticscdn.com https://lostcause.stats.fiveem.com
    • • content-type: text/html
    • • date: Thu, 18 Jun 2026 09:28:37 GMT
    • • last-modified: Thu, 18 Jun 2026 09:23:26 GMT
    • • permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
    • • referrer-policy: strict-origin-when-cross-origin
    • • server: cloudflare
    • • strict-transport-security: max-age=31536000; includeSubDomains
    • • svid: df9a32c0ca39fe73280a05bb3c3ebf116b782f3e3598f0d685a4acbfec0a36de82333bbd521b5fda4baaca5f8c9668ff6a922b46c696d01ea4941e0164f6605cced2e7067c69292d027b1985f3fbef6c75d5410b2d94d7dc5e2345aa0e84a21b93801e8f9e895b7d9dc8d66f131965c82ae82af1ffa5a8c96682290ed4158e61ba8c2c31ae1258c8fffc7a4ddd1b609d5346dfcca196d5c3ec8c281ea5e753574deb954b7a799b1a80cd8c95f7f25118cc12763cf40d3fe13db8ed245f2ad2ead33d2aa5993ddfd0db5351d50442af5066b59bd01474411c98fa5d6441b54c188d7305
    • • vary: Accept-Encoding
    • • x-content-type-options: nosniff
    • • x-frame-options: SAMEORIGIN
  • CSP Quality Error

    1 CSP hardening issues detected.

    • • script-src/default-src permits 'unsafe-inline'.
    • • Content-Security-Policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self'; img-src 'self' data: https://queue.simpleanalyticscdn.com; font-src 'self' https://fonts.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' https://scripts.simpleanalyticscdn.com https://lostcause.stats.fiveem.com; connect-src 'self' https://queue.simpleanalyticscdn.com https://scripts.simpleanalyticscdn.com https://lostcause.stats.fiveem.com

    Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.

  • No first-party cookies were set during the initial page load.

  • Server response headers do not expose version tokens.

  • Domain appears to be behind Cloudflare.

    • • server: cloudflare
    • • cf-cache-status: HIT
    • • cf-ray: a0d943d34933056c-IAD
  • Loaded in 0.19s (perceived).

  • 0 scripts and 1 styles may block rendering.

    • • style: https://fonts.googleapis.com/css2?family=Bricolage+Grotesque:opsz,[email protected],500;12..96,800&family=Share+Tech+Mono&display=swap

    Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.

  • Text-like assets appear compressed.

  • Robots.txt Pass

    Found robots.txt (200).

  • Found sitemap (200) at https://lostcause.dev/sitemap-index.xml.

  • Robots meta found: index, follow

Accessibility Basics

  • All 0 controls are labeled.

  • Landmarks Pass

    Header, nav, main, and footer landmarks are present.

  • Tap Target Size Warning

    8 interactive elements appear smaller than 48px.

    • • a.category-badge (Vue.js) - 58x22px
    • • a.category-badge (Vue.js) - 58x22px
    • • a.category-badge (Tutorials) - 78x22px
    • • a.category-badge (JavaScript) - 85x22px
    • • a.category-badge (Git) - 38x22px
    • • a.footer-lunafinder__brand (LOSTCAUSE.DEV is powered by LunaFinder) - 322x24px
    • • a.footer-social__link (GitHub) - 80x20px
    • • a.footer-social__link (X) - 40x20px

    Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.

Social & Rich Results

  • Core Open Graph tags are present.

  • og:image is present and absolute.

    Open Graph Image
  • twitter:card set to summary_large_image.

  • JSON-LD schema detected.

  • Manifest and Apple touch icon are configured.

  • Social preview metadata and image quality look good for Open Graph/Twitter.

    • • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
    • • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
    • • GUIDELINE: Optimal preview image size: 1200x630 pixels.
    • • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
    • • GUIDELINE: Optimal preview image file size: under 5 MB.
    • • GUIDELINE: Recommended twitter:card: summary_large_image.
    • • MEASURED: Image size: 0.26 MB
    • • MEASURED: Image dimensions: 1200x630

Links Analysis

  • Checked 15 links. No broken internal links found.

  • No broken external links found in checked URLs.

  • All 25 links use non-empty href values.

Performance & Runtime