Audit Result
UUID: 019ee0c4-2863-71c8-a528-257342000fad
https://ishahidullah.com/
Scanned 4 weeks ago
Meta Information
-
Title Tag Pass
Found 44 characters. Length is optimal.
-
Meta Description Error
Missing meta description.
Fix: Add <meta name="description" content="..."> in <head> with a clear page summary.
-
Canonical URL Pass
Canonical found: https://ishahidullah.com/
-
Favicon Warning
No favicon link found in <head>.
Fix: Add <link rel="icon" href="/favicon.ico"> to ensure browser tab and bookmark visibility.
-
Viewport Meta Pass
Viewport configured: width=device-width, initial-scale=1
-
HTML Lang Pass
Language declared as "en-US".
Content Structure
-
H1 Tag Pass
Exactly one H1 found: "Coming Soon".
-
Heading Hierarchy Pass
Valid heading flow across 2 headings.
-
Image Alt Text Pass
All 0 images include alt text.
Technical Optimization
-
HTTPS Pass
Page is served over HTTPS.
-
HSTS & HTTPS Redirect Warning
2 HTTPS hardening issues detected.
- • Missing Strict-Transport-Security header.
- • Could not probe the HTTP version of this page.
Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.
-
Security Headers Warning
Missing: strict-transport-security, x-frame-options, x-content-type-options, referrer-policy.
Full HTTP headers (11)
- • alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
- • content-encoding: br
- • content-security-policy: upgrade-insecure-requests
- • content-type: text/html; charset=UTF-8
- • date: Fri, 19 Jun 2026 16:43:30 GMT
- • link: <https://ishahidullah.com/wp-json/>; rel="https://api.w.org/" <https://ishahidullah.com/wp-json/wp/v2/pages/9>; rel="alternate"; title="JSON"; type="application/json" <https://ishahidullah.com/>; rel=shortlink
- • panel: hpanel
- • platform: hostinger
- • server: LiteSpeed
- • vary: Accept-Encoding
- • x-powered-by: PHP/8.2.30
Fix: Add the missing security headers at your reverse proxy or application layer.
-
CSP Quality Warning
3 CSP hardening issues detected.
- • CSP is missing object-src 'none'.
- • CSP is missing a base-uri restriction.
- • CSP is missing frame-ancestors protection.
- • Content-Security-Policy: upgrade-insecure-requests
Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.
-
Cookie Security Pass
No first-party cookies were set during the initial page load.
-
Server Version Disclosure Warning
Versioned headers detected: x-powered-by.
- • x-powered-by: PHP/8.2.30
Fix: Hide or remove version tokens in Server and X-Powered-By headers.
-
Cloudflare Proxy Warning
Domain does not appear to be behind Cloudflare.
-
Perceived Load Time Pass
Loaded in 0.64s (perceived).
-
Render Blocking Resources Warning
0 scripts and 3 styles may block rendering.
- • style: https://ishahidullah.com/wp-content/themes/hello-elementor/assets/css/reset.css?ver=3.4.4
- • style: https://ishahidullah.com/wp-content/themes/hello-elementor/assets/css/theme.css?ver=3.4.4
- • style: https://ishahidullah.com/wp-content/themes/hello-elementor/assets/css/header-footer.css?ver=3.4.4
Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.
-
Compression Warning
1 text resources look uncompressed.
- • blob:https://ishahidullah.com/b592c991-30f2-40db-836a-f48fe95b64b4 (text/javascript)
Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.
-
Robots.txt Pass
Found robots.txt (200).
-
Sitemap File Pass
Found sitemap (200) at https://ishahidullah.com/sitemap.xml.
-
Crawl Directives Pass
Robots meta found: max-image-preview:large
Accessibility Basics
-
Form Labels Pass
All 0 controls are labeled.
-
Landmarks Warning
Missing landmarks: nav.
Fix: Use semantic regions (<header>, <nav>, <main>, <footer>) for navigation and assistive tech.
-
Tap Target Size Warning
1 interactive elements appear smaller than 48px.
- • a.skip-link.screen-reader-text (Skip to content) - 1x1px
Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.
Social & Rich Results
-
Open Graph Basics Warning
Missing og:title or og:description.
Fix: Add og:title and og:description tags to control social preview text.
-
Open Graph Image Warning
og:image is missing.
Fix: Add <meta property="og:image" content="https://..."> with a high-quality share image.
-
Twitter Card Warning
twitter:card is missing.
Fix: Add <meta name="twitter:card" content="summary_large_image"> for better previews on X.
-
Structured Data Warning
No JSON-LD schema scripts found.
Fix: Add JSON-LD structured data matching your page type (Organization, Article, Product, etc.).
-
PWA Metadata Warning
Manifest or Apple touch icon is missing.
Fix: Link your web app manifest and apple-touch-icon for improved install/share experiences.
-
Open Graph/Twitter Quality Warning
5 social preview quality issues detected.
- • ISSUE: og:url should be an absolute URL.
- • ISSUE: og:title should typically be between 10 and 70 characters.
- • ISSUE: og:description should typically be between 50 and 200 characters.
- • ISSUE: Use an absolute URL for og:image or twitter:image.
- • ISSUE: twitter:card is missing.
- • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
- • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
- • GUIDELINE: Optimal preview image size: 1200x630 pixels.
- • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
- • GUIDELINE: Optimal preview image file size: under 5 MB.
- • GUIDELINE: Recommended twitter:card: summary_large_image.
Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.
Links Analysis
-
Internal Links Pass
Checked 1 links. No broken internal links found.
-
External Links Pass
No broken external links found in checked URLs.
-
Link Format Pass
All 2 links use non-empty href values.
Performance & Runtime
-
Core Web Vitals: LCP Pass
Largest Contentful Paint: 0.64s.
-
Core Web Vitals: CLS Pass
Cumulative Layout Shift: 0.000.
-
Total Blocking Time estimate: 0ms.
-
Broken Assets Pass
No failed CSS/JS/image/font/media requests detected.
-
No console/page runtime errors detected during audit.