Audit Result

UUID: 019ef191-1be5-71c7-a73f-da0d91664903

lanepilot.io

https://lanepilot.io/#landing

Scanned 3 weeks ago

79
Fair Score
39 total checks
Passed
25
Warnings
12
Errors
2

Meta Information

  • Title Tag Pass

    Found 42 characters. Length is optimal.

  • Found 190 characters. Keep description around 70-160 characters.

    Fix: Add <meta name="description" content="..."> in <head> with a clear page summary.

  • Canonical found: https://lanepilot.io/

  • Favicon Pass

    Favicon found and reachable: /favicon.svg (HTTP 200).

    Favicon
  • Viewport configured: width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no

  • HTML Lang Pass

    Language declared as "en".

Content Structure

  • H1 Tag Pass

    Exactly one H1 found: "Freeze frame in.Test plan out.90 seconds.".

  • Detected 2 heading level jumps.

    • • Skipped from h2 to h4: "The car said no. Lane Pilot unlocked it. Then proved the fix." -> "Reasons, never guesses".
    • • Skipped from h2 to h4: "Bring us your worst intermittent." -> "Products".

    Fix: Follow semantic order (h1 -> h2 -> h3) and avoid skipping heading levels.

  • All 0 images include alt text.

Technical Optimization

  • HTTPS Pass

    Page is served over HTTPS.

  • 1 HTTPS hardening issues detected.

    • • Could not probe the HTTP version of this page.
    • • Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

    Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.

  • Core security headers were detected.

    Full HTTP headers (17)
    • • accept-ranges: bytes
    • • age: 1
    • • cache-control: public,max-age=0,must-revalidate
    • • cache-status: "Netlify Edge"; fwd=miss
    • • content-encoding: br
    • • content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://challenges.cloudflare.com https://js.stripe.com https://cdn.tolt.io https://cdn.jsdelivr.net https://connect.facebook.net; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https://*.supabase.co https://www.facebook.com; connect-src 'self' https://*.supabase.co wss://*.supabase.co https://generativelanguage.googleapis.com https://api.stripe.com https://vpic.nhtsa.dot.gov https://api.tolt.io https://cdn.jsdelivr.net; frame-src https://challenges.cloudflare.com https://js.stripe.com; object-src 'none'; base-uri 'self'; frame-ancestors 'none'
    • • content-type: text/html; charset=UTF-8
    • • date: Mon, 22 Jun 2026 23:01:16 GMT
    • • etag: "e5d3013fab4e200641c27fd1af080b4c-ssl-df"
    • • permissions-policy: camera=(), microphone=(), geolocation=()
    • • referrer-policy: strict-origin-when-cross-origin
    • • server: Netlify
    • • strict-transport-security: max-age=31536000; includeSubDomains; preload
    • • vary: Accept-Encoding
    • • x-content-type-options: nosniff
    • • x-frame-options: DENY
    • • x-nf-request-id: 01KVRS2386VWVSJBNBJVBQWPG9
  • CSP Quality Error

    2 CSP hardening issues detected.

    • • script-src/default-src permits 'unsafe-inline'.
    • • script-src/default-src permits 'unsafe-eval'.
    • • Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://challenges.cloudflare.com https://js.stripe.com https://cdn.tolt.io https://cdn.jsdelivr.net https://connect.facebook.net; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https://*.supabase.co https://www.facebook.com; connect-src 'self' https://*.supabase.co wss://*.supabase.co https://generativelanguage.googleapis.com https://api.stripe.com https://vpic.nhtsa.dot.gov https://api.tolt.io https://cdn.jsdelivr.net; frame-src https://challenges.cloudflare.com https://js.stripe.com; object-src 'none'; base-uri 'self'; frame-ancestors 'none'

    Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.

  • No first-party cookies were set during the initial page load.

  • Server response headers do not expose version tokens.

  • Domain does not appear to be behind Cloudflare.

  • Loaded in 0.21s (perceived).

  • 0 scripts and 4 styles may block rendering.

    • • style: https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700;800;900&family=Inter+Tight:wght@400;500;600;700;800;900&display=swap
    • • style: https://fonts.googleapis.com/css2?family=JetBrains+Mono:wght@400;500;700&display=swap
    • • style: https://lanepilot.io/assets/index-dxsQ5tWq.css
    • • style: https://lanepilot.io/assets/LandingPage-oOss-aWx.css

    Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.

  • Compression Warning

    1 text resources look uncompressed.

    • • https://fuuxaiwngfdvypfexpyv.supabase.co/rest/v1/offline_brain_cache?select=fault_code%2Cvehicle_make%2Csymptom%2Ctest_plan_markdown (application/json; charset=utf-8)

    Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.

  • Robots.txt Pass

    Found robots.txt (200).

  • Found sitemap (200) at https://lanepilot.io/sitemap.xml.

  • Robots meta found: index,follow

Accessibility Basics

  • All 0 controls are labeled.

  • Landmarks Warning

    Missing landmarks: header, main.

    Fix: Use semantic regions (<header>, <nav>, <main>, <footer>) for navigation and assistive tech.

  • Tap Target Size Warning

    25 interactive elements appear smaller than 48px.

    • • button.flex.items-center (Products) - 85x32px
    • • button.hidden.md:block (Pricing) - 50x16px
    • • button.hidden.md:inline-flex (Login) - 73x32px
    • • button (See pricing →) - 93x23px
    • • button.text-sm.text-zinc-500 (Diagnostic Engine) - 113x20px
    • • button.text-sm.text-zinc-500 (Visual Repair Intelligence) - 158x20px
    • • button.text-sm.text-zinc-500 (Baseline IntelligenceBeta) - 172x26px
    • • button.text-sm.text-zinc-500 (OEM Data ImportBeta) - 153x26px
    • • button.text-sm.text-zinc-500 (Shop Platform) - 89x20px
    • • button.text-sm.text-zinc-500 (Enterprise API) - 90x20px
    • • button.text-sm.text-zinc-500 (OBD-II Web ScannerLive) - 173x26px
    • • button.text-sm.text-zinc-500 (API Reference) - 91x20px
    • • button.text-sm.text-zinc-500 (Documentation) - 94x20px
    • • button.text-sm.text-zinc-500 (Fleet API) - 57x20px
    • • a.text-sm.text-zinc-500 (StatusOperational) - 117x26px
    • • button.text-sm.text-zinc-500 (Pricing) - 43x20px
    • • button.text-sm.text-zinc-500 (Security) - 51x20px
    • • button.text-sm.text-zinc-500 (Privacy Policy) - 87x20px
    • • button.text-sm.text-zinc-500 (Terms of Service) - 104x20px
    • • button.text-sm.text-zinc-500 (OSHA Compliance) - 117x20px
    • • button.text-sm.text-zinc-500 (About) - 37x20px
    • • button.text-sm.text-zinc-500 (Contact) - 48x20px
    • • button.text-sm.text-zinc-500 (Partner ProgramNew) - 146x26px
    • • a.text-sm.text-zinc-500 ([email protected]) - 126x20px
    • • a.text-sm.text-zinc-500 (BlogSoon) - 75x26px

    Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.

Social & Rich Results

  • Core Open Graph tags are present.

  • og:image is present and absolute.

    Open Graph Image
  • twitter:card set to summary_large_image.

  • JSON-LD schema detected.

  • Manifest and Apple touch icon are configured.

  • 1 social preview quality issues detected.

    • • ISSUE: Failed to fetch preview image: network error.
    • • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
    • • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
    • • GUIDELINE: Optimal preview image size: 1200x630 pixels.
    • • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
    • • GUIDELINE: Optimal preview image file size: under 5 MB.
    • • GUIDELINE: Recommended twitter:card: summary_large_image.

    Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.

Links Analysis

  • Checked 2 links. No broken internal links found.

  • No broken external links found in checked URLs.

  • Link Format Warning

    5 links are empty, invalid, or placeholder-only.

    • • href="#" text="StatusOperational"
    • • href="#" text="BlogSoon"
    • • href="#" text="CareersSoon"
    • • href="#"
    • • href="#"

    Fix: Replace empty/#/javascript href values with real destinations or use buttons for non-navigation actions.

Performance & Runtime

  • Largest Contentful Paint: 0.65s.

  • Cumulative Layout Shift: 0.000.

  • Total Blocking Time estimate: 204ms.

    Fix: Reduce heavy JavaScript work, split long tasks, and defer non-critical scripts.

  • 5 asset requests failed.

    • • https://cdn.tolt.io/tolt.js (net::ERR_FAILED)
    • • https://connect.facebook.net/en_US/fbevents.js (net::ERR_FAILED)
    • • https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxDcwg.woff2 (net::ERR_FAILED)
    • • https://fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 (net::ERR_FAILED)
    • • https://fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1pL7SUc.woff2 (net::ERR_FAILED)

    Fix: Fix missing files, update asset URLs, and ensure static assets return HTTP 200.

  • 8 JavaScript runtime issues detected.

    • • Request failed: https://fuuxaiwngfdvypfexpyv.supabase.co/rest/v1/offline_brain_cache?select=fault_code%2Cvehicle_make%2Csymptom%2Ctest_plan_markdown (net::ERR_ABORTED, type: fetch)
    • • Request failed: https://cdn.tolt.io/tolt.js (net::ERR_FAILED, type: script)
    • • Request failed: https://connect.facebook.net/en_US/fbevents.js (net::ERR_FAILED, type: script)
    • • Failed to load resource: net::ERR_FAILED [https://cdn.tolt.io/tolt.js:1]
    • • Failed to load resource: net::ERR_FAILED [https://connect.facebook.net/en_US/fbevents.js:1]
    • • Failed to load resource: net::ERR_FAILED [https://fonts.gstatic.com/s/jetbrainsmono/v24/tDbv2o-flEEny0FZhsfKu5WU4zr3E_BX0PnT8RD8yKwBNntkaToggR7BYRbKPxDcwg.woff2:1]
    • • Failed to load resource: net::ERR_FAILED [https://fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2:1]
    • • Failed to load resource: net::ERR_FAILED [https://fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1pL7SUc.woff2:1]

    Fix: Fix JS files returning 404/failed requests and resolve the listed runtime exceptions.