Audit Result
UUID: 019ef8be-0689-716b-8713-db5762510d1e
https://matekmegoldasok.hu/
Scanned 3 weeks ago
Meta Information
-
Title Tag Pass
Found 59 characters. Length is optimal.
-
Meta Description Pass
Found 154 characters. Good snippet length.
-
Canonical URL Pass
Canonical found: https://matekmegoldasok.hu/
-
-
Viewport Meta Pass
Viewport configured: width=device-width, initial-scale=1.0
-
HTML Lang Pass
Language declared as "hu".
Content Structure
-
H1 Tag Pass
Exactly one H1 found: "MatekMegoldások".
-
Heading Hierarchy Pass
Valid heading flow across 55 headings.
-
Image Alt Text Pass
All 1 images include alt text.
Technical Optimization
-
HTTPS Pass
Page is served over HTTPS.
-
HSTS & HTTPS Redirect Warning
1 HTTPS hardening issues detected.
- • Could not probe the HTTP version of this page.
- • Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.
-
Security Headers Pass
Core security headers were detected.
Full HTTP headers (15)
- • cache-control: public, max-age=0, s-maxage=3600, stale-while-revalidate=86400
- • content-encoding: br
- • content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://www.googletagmanager.com https://www.google-analytics.com https://app.lemonsqueezy.com https://assets.lemonsqueezy.com https://cdn.paddle.com https://*.paddle.com https://public.profitwell.com https://*.profitwell.com https://pagead2.googlesyndication.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com https://www.googletagservices.com https://*.adtrafficquality.google; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://assets.lemonsqueezy.com https://*.paddle.com https://fonts.googleapis.com; img-src 'self' data: https: blob:; font-src 'self' https://cdn.jsdelivr.net https://assets.lemonsqueezy.com https://*.paddle.com https://fonts.gstatic.com; connect-src 'self' https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://app.lemonsqueezy.com https://api.lemonsqueezy.com https://*.paddle.com https://*.profitwell.com https://googleads.g.doubleclick.net https://pagead2.googlesyndication.com https://fundingchoicesmessages.google.com https://*.adtrafficquality.google; frame-src https://app.lemonsqueezy.com https://*.paddle.com https://googleads.g.doubleclick.net https://tpc.googlesyndication.com https://*.adtrafficquality.google https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self' https://app.lemonsqueezy.com https://*.paddle.com; worker-src 'self' blob:
- • content-type: text/html; charset=utf-8
- • date: Wed, 24 Jun 2026 08:27:28 GMT
- • link: </assets/client-entry-BcVhGSYh.js>; rel="modulepreload"; as="script", </assets/fresh-island__ThemeToggle-KapQh6zb.js>; rel="modulepreload"; as="script", </assets/fresh-island__HomepageCountdowns-CX-yHsXv.js>; rel="modulepreload"; as="script"
- • permissions-policy: camera=(), microphone=(), geolocation=()
- • referrer-policy: strict-origin-when-cross-origin
- • server: deno/gcp-us-east4
- • strict-transport-security: max-age=63072000; includeSubDomains; preload
- • vary: Accept-Encoding
- • via: http/2 edgeproxy-h
- • x-content-type-options: nosniff
- • x-dns-prefetch-control: on
- • x-frame-options: SAMEORIGIN
-
CSP Quality Error
3 CSP hardening issues detected.
- • script-src/default-src permits 'unsafe-inline'.
- • script-src/default-src permits 'unsafe-eval'.
- • CSP is missing frame-ancestors protection.
- • Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://www.googletagmanager.com https://www.google-analytics.com https://app.lemonsqueezy.com https://assets.lemonsqueezy.com https://cdn.paddle.com https://*.paddle.com https://public.profitwell.com https://*.profitwell.com https://pagead2.googlesyndication.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com https://www.googletagservices.com https://*.adtrafficquality.google; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://assets.lemonsqueezy.com https://*.paddle.com https://fonts.googleapis.com; img-src 'self' data: https: blob:; font-src 'self' https://cdn.jsdelivr.net https://assets.lemonsqueezy.com https://*.paddle.com https://fonts.gstatic.com; connect-src 'self' https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://app.lemonsqueezy.com https://api.lemonsqueezy.com https://*.paddle.com https://*.profitwell.com https://googleads.g.doubleclick.net https://pagead2.googlesyndication.com https://fundingchoicesmessages.google.com https://*.adtrafficquality.google; frame-src https://app.lemonsqueezy.com https://*.paddle.com https://googleads.g.doubleclick.net https://tpc.googlesyndication.com https://*.adtrafficquality.google https://www.google.com; object-src 'none'; base-uri 'self'; form-action 'self' https://app.lemonsqueezy.com https://*.paddle.com; worker-src 'self' blob:
Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.
-
Cookie Security Pass
No first-party cookies were set during the initial page load.
-
Server response headers do not expose version tokens.
-
Cloudflare Proxy Warning
Domain does not appear to be behind Cloudflare.
-
Perceived Load Time Pass
Loaded in 0.86s (perceived).
-
Render Blocking Resources Warning
1 scripts and 1 styles may block rendering.
- • script: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202606180101/show_ads_impl.js
- • style: https://matekmegoldasok.hu/assets/client-entry-C3kIeyoQ.css?__frsh_c=4711ec50f5f4772b50f9e6cde9f5c14a58cc2f21
Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.
-
Compression Warning
4 text resources look uncompressed.
- • https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202606180101/show_ads_impl.js (text/javascript; charset=ISO-8859-1)
- • https://fundingchoicesmessages.google.com/el/AGSKWxWmlYxsmcmnCl7wh-jsmgEfjuvQHDdwX0Ub4Tn_kGI6sBpE_PXJFep13_kTE7c8yDxVkyh8YtpqUVs3GVD4snxNGusAY1QM9jONFQF1AFh-Gp7omqBHRmGgL9BuK1CgcPr88gu4EA== (text/html; charset=utf-8)
- • https://fundingchoicesmessages.google.com/el/AGSKWxVwkV5KwNnxYLVdHI9HaFKnGrZLhUTnRAoTII1FqG0faU5klwO9iskE6ssNpBJ-2fZesNUcFuKuQOmAqGP4v5EQNwKbPgUwVAQ5cGUVIJgRxeUdwLmCN4AK1cBGqLz2DDblSJbYKQ== (text/html; charset=utf-8)
- • https://fundingchoicesmessages.google.com/el/AGSKWxWCEe8jn4R7nOamuDhyJ3WQkHYtg2QUCINc4avu9H_0VLdzV_78Mmz7PodyuvsuBWcTEBm6I_9HKAFgx1k-QcIW1XeA0L9i0GFfdSv83AKbO-nGzPqEc2mDXiaZiJk_PCVCWsizcA== (text/html; charset=utf-8)
Fix: Enable Brotli or Gzip compression for HTML, CSS, JS, and JSON responses.
-
Robots.txt Pass
Found robots.txt (200).
-
Sitemap File Warning
Sitemap missing or inaccessible at https://matekmegoldasok.hu/sitemap.xml (no response).
Fix: Publish a sitemap.xml and reference it in robots.txt with: Sitemap: https://matekmegoldasok.hu/sitemap.xml
-
Crawl Directives Pass
Robots meta found: index, follow, max-snippet:-1, max-image-preview:large
Accessibility Basics
-
Form Labels Pass
All 0 controls are labeled.
-
Landmarks Pass
Header, nav, main, and footer landmarks are present.
-
Tap Target Size Warning
2 interactive elements appear smaller than 48px.
- • a.inline-flex.items-center (FeladatokFeladatlapokÚj) - 158x36px
- • a.max-w-7xl.mx-auto (📐 Témazárókra készülsz? PDF feladatlapok →) - 1280x40px
Fix: Increase target size to at least 48x48 CSS pixels for touch interactions.
Social & Rich Results
-
Open Graph Basics Pass
Core Open Graph tags are present.
-
-
Twitter Card Pass
twitter:card set to summary_large_image.
-
Structured Data Pass
JSON-LD schema detected.
-
PWA Metadata Pass
Manifest and Apple touch icon are configured.
-
Open Graph/Twitter Quality Warning
1 social preview quality issues detected.
- • ISSUE: Failed to fetch preview image: network error.
- • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
- • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
- • GUIDELINE: Optimal preview image size: 1200x630 pixels.
- • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
- • GUIDELINE: Optimal preview image file size: under 5 MB.
- • GUIDELINE: Recommended twitter:card: summary_large_image.
Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.
Links Analysis
-
Internal Links Pass
Checked 61 links. No broken internal links found.
-
External Links Pass
No broken external links found in checked URLs.
-
Link Format Pass
All 81 links use non-empty href values.
Performance & Runtime
-
Core Web Vitals: LCP Pass
Largest Contentful Paint: 0.88s.
-
Core Web Vitals: CLS Pass
Cumulative Layout Shift: 0.005.
-
Total Blocking Time estimate: 108ms.
-
Broken Assets Pass
No failed CSS/JS/image/font/media requests detected.
-
No console/page runtime errors detected during audit.