Audit Result

UUID: 019f514e-2d11-7379-b2e6-253027a82b3a

xhamster.videodownloaderai.com

https://xhamster.videodownloaderai.com/

Scanned 6 days ago

91
Excellent Score
39 total checks
Passed
33
Warnings
5
Errors
1

Meta Information

  • Title Tag Pass

    Found 56 characters. Length is optimal.

  • Found 154 characters. Good snippet length.

  • Canonical found: https://xhamster.videodownloaderai.com

  • Favicon Pass

    Favicon found and reachable: /favicon.ico?favicon.0x3dzn~oxb6tn.ico (HTTP 200).

    Favicon
  • Viewport configured: width=device-width, initial-scale=1, maximum-scale=5

  • HTML Lang Pass

    Language declared as "en".

Content Structure

Technical Optimization

  • HTTPS Pass

    Page is served over HTTPS.

  • 1 HTTPS hardening issues detected.

    • • Could not probe the HTTP version of this page.
    • • Strict-Transport-Security: max-age=31536000; includeSubDomains

    Fix: Set Strict-Transport-Security with a long max-age, add includeSubDomains, and redirect all HTTP requests to HTTPS.

  • Core security headers were detected.

    Full HTTP headers (18)
    • • cache-control: s-maxage=31536000
    • • connection: keep-alive
    • • content-encoding: gzip
    • • content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'none'; form-action 'self'; img-src 'self' data: https: blob:; font-src 'self' https://fonts.gstatic.com data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https:; media-src 'self' https: blob:; upgrade-insecure-requests
    • • content-type: text/html; charset=utf-8
    • • date: Sat, 11 Jul 2026 13:11:41 GMT
    • • etag: "a1qvka0p26pd7"
    • • permissions-policy: camera=(), microphone=(), geolocation=(), payment=()
    • • referrer-policy: strict-origin-when-cross-origin
    • • server: nginx
    • • strict-transport-security: max-age=31536000; includeSubDomains
    • • transfer-encoding: chunked
    • • vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding
    • • x-content-type-options: nosniff
    • • x-frame-options: DENY
    • • x-nextjs-cache: HIT
    • • x-nextjs-prerender: 1 1
    • • x-nextjs-stale-time: 300
  • CSP Quality Error

    2 CSP hardening issues detected.

    • • script-src/default-src permits 'unsafe-inline'.
    • • script-src/default-src permits 'unsafe-eval'.
    • • Content-Security-Policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'none'; form-action 'self'; img-src 'self' data: https: blob:; font-src 'self' https://fonts.gstatic.com data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https:; media-src 'self' https: blob:; upgrade-insecure-requests

    Fix: Tighten Content-Security-Policy by removing unsafe directives and adding object-src, base-uri, and frame-ancestors restrictions.

  • No first-party cookies were set during the initial page load.

  • Server response headers do not expose version tokens.

  • Domain does not appear to be behind Cloudflare.

  • Loaded in 0.91s (perceived).

  • 1 scripts and 2 styles may block rendering.

    • • script: https://xhamster.videodownloaderai.com/_next/static/chunks/03~yq9q893hmn.js
    • • style: https://xhamster.videodownloaderai.com/_next/static/chunks/0968jv~p0zquz.css
    • • style: https://fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700;800&display=swap

    Fix: Defer non-critical scripts and inline critical CSS to improve first paint speed.

  • Text-like assets appear compressed.

  • Robots.txt Pass

    Found robots.txt (200).

  • Found sitemap (200) at https://xhamster.videodownloaderai.com/sitemap.xml.

  • Robots meta found: index, follow

Accessibility Basics

  • All 1 controls are labeled.

  • Landmarks Pass

    Header, nav, main, and footer landmarks are present.

  • Interactive targets look touch-friendly.

Social & Rich Results

  • Core Open Graph tags are present.

  • og:image is present and absolute.

    Open Graph Image
  • twitter:card set to summary_large_image.

  • JSON-LD schema detected.

  • PWA Metadata Warning

    Manifest or Apple touch icon is missing.

    Fix: Link your web app manifest and apple-touch-icon for improved install/share experiences.

  • 1 social preview quality issues detected.

    • • ISSUE: Could not determine preview image dimensions.
    • • GUIDELINE: Optimal og:title length: 40-60 characters (acceptable: 10-70).
    • • GUIDELINE: Optimal og:description length: 110-160 characters (acceptable: 50-200).
    • • GUIDELINE: Optimal preview image size: 1200x630 pixels.
    • • GUIDELINE: Optimal preview image aspect ratio: 1.91:1.
    • • GUIDELINE: Optimal preview image file size: under 5 MB.
    • • GUIDELINE: Recommended twitter:card: summary_large_image.
    • • MEASURED: Image size: 0.00 MB

    Fix: Use absolute OG/Twitter URLs, keep metadata lengths in recommended ranges, and provide a preview image near 1200x630 under 5MB.

Links Analysis

Performance & Runtime