Webappsec.org Site Title

Home - Web Application Security Consortium

Webappsec.org Test Results

Webappsec.org Mobile Performance: 93/100
Quick overview:
Diagnostics
More information about the performance of your application. These numbers don't directly affect the Performance score.
Avoid long main-thread tasks
1 long task found
Lists the longest tasks on the main thread, useful for identifying worst contributors to input delay. Learn more
Avoid chaining critical requests
1 chain found
The Critical Request Chains below show you what resources are loaded with a high priority. Consider reducing the length of chains, reducing the download size of resources, or deferring the download of unnecessary resources to improve page load. Learn more.
Largest Contentful Paint element
1 element found
This is the largest contentful element painted within the viewport. Learn More
Keep request counts low and transfer sizes small
5 requests • 7 KiB
To set budgets for the quantity and size of page resources, add a budget.json file. Learn more.
Avoid large layout shifts
1 element found
These DOM elements contribute most to the CLS of the page.

Webappsec.org Mobile SEO: 67/100
Quick overview:
Content Best Practices
Format your HTML in a way that enables crawlers to better understand your app’s content.
Document does not have a meta description
Meta descriptions may be included in search results to concisely summarize page content. Learn more.
Mobile Friendly
Make sure your pages are mobile friendly so users don’t have to pinch or zoom in order to read the content pages. Learn more.
Document doesn't use legible font sizes
Font sizes less than 12px are too small to be legible and require mobile visitors to “pinch to zoom” in order to read. Strive to have >60% of page text ≥12px. Learn more. Text is illegible because there's no viewport meta tag optimized for mobile screens.
Does not have a `<meta name="viewport">` tag with `width` or `initial-scale`
Add a `<meta name="viewport">` tag to optimize your app for mobile screens. Learn more. No `<meta name="viewport">` tag found
Tap targets are not sized appropriately
Interactive elements like buttons and links should be large enough (48x48px), and have enough space around them, to be easy enough to tap without overlapping onto other elements. Learn more. Tap targets are too small because there's no viewport meta tag optimized for mobile screens

Webappsec.org Mobile Best Practices: 77/100
Quick overview:
Browser Compatibility
Charset declaration is missing or occurs too late in the HTML
A character encoding declaration is required. It can be done with a <meta> tag in the first 1024 bytes of the HTML or in the Content-Type HTTP response header. Learn more.
Page lacks the HTML doctype, thus triggering quirks-mode
Specifying a doctype prevents the browser from switching to quirks-mode. Learn more. Expected publicId to be an empty string
Trust and Safety
Does not use HTTPS
3 insecure requests found
All sites should be protected with HTTPS, even ones that don't handle sensitive data. This includes avoiding mixed content, where some resources are loaded over HTTP despite the initial request being servedover HTTPS. HTTPS prevents intruders from tampering with or passively listening in on the communications between your app and your users, and is a prerequisite for HTTP/2 and many new web platform APIs. Learn more.
Webappsec.org Mobile Progressive Web App: 29/100
Quick overview:
Installable
Web app manifest does not meet the installability requirements
Browsers can proactively prompt users to add your app to their homescreen, which can lead to higher engagement. Learn more. Failures: No manifest was fetched.
Does not use HTTPS
3 insecure requests found
All sites should be protected with HTTPS, even ones that don't handle sensitive data. This includes avoiding mixed content, where some resources are loaded over HTTP despite the initial request being servedover HTTPS. HTTPS prevents intruders from tampering with or passively listening in on the communications between your app and your users, and is a prerequisite for HTTP/2 and many new web platform APIs. Learn more.
Does not register a service worker that controls page and `start_url`
The service worker is the technology that enables your app to use many Progressive Web App features, such as offline, add to homescreen, and push notifications. Learn more.
PWA Optimized
Does not provide a valid `apple-touch-icon`
For ideal appearance on iOS when users add a progressive web app to the home screen, define an `apple-touch-icon`. It must point to a non-transparent 192px (or 180px) square PNG. Learn More.
Does not redirect HTTP traffic to HTTPS
If you've already set up HTTPS, make sure that you redirect all HTTP traffic to HTTPS in order to enable secure web features for all your users. Learn more.
Content is not sized correctly for the viewport
If the width of your app's content doesn't match the width of the viewport, your app might not be optimized for mobile screens. Learn more. The viewport size of 980px does not match the window size of 360px.
Is not configured for a custom splash screen
A themed splash screen ensures a high-quality experience when users launch your app from their homescreens. Learn more. Failures: No manifest was fetched.
Does not have a `<meta name="viewport">` tag with `width` or `initial-scale`
Add a `<meta name="viewport">` tag to optimize your app for mobile screens. Learn more. No `<meta name="viewport">` tag found
Does not set a theme color for the address bar.
The browser address bar can be themed to match your site. Learn more. Failures: No manifest was fetched, No `<meta name="theme-color">` tag found.
Manifest doesn't have a maskable icon
A maskable icon ensures that the image fills the entire shape without being letterboxed when installing the app on a device. Learn more. No manifest was fetched
Fast and reliable
`start_url` does not respond with a 200 when offline
A service worker enables your web app to be reliable in unpredictable network conditions. Learn more. No usable web app manifest found on page.
Current page does not respond with a 200 when offline
If you're building a Progressive Web App, consider using a service worker so that your app can work offline. Learn more.
Webappsec.org Mobile Accessibility: 61/100
Quick overview:
Navigation
These are opportunities to improve keyboard navigation in your application.
The page does not contain a heading, skip link, or landmark region
Adding ways to bypass repetitive content lets keyboard users navigate the page more efficiently. Learn more.
Names and labels
These are opportunities to improve the semantics of the controls in your application. This may enhance the experience for users of assistive technology, like a screen reader.
Form elements do not have associated labels
Labels ensure that form controls are announced properly by assistive technologies, like screen readers. Learn more.
Internationalization and localization
These are opportunities to improve the interpretation of your content by users in different locales.
`<html>` element does not have a `[lang]` attribute
If a page doesn't specify a lang attribute, a screen reader assumes that the page is in the default language that the user chose when setting up the screen reader. If the page isn't actually in the default language, then the screen reader might not announce the page's text correctly. Learn more.
Similar tests
www.webappsec.com
www.webappsec.net
www.webappsec.org
www.webappsec.info
www.webappsec.biz
www.webappsec.us
www.webappsec.mobi
www.ebappsec.org
www.webappsec.org
www.qebappsec.org
www.wqebappsec.org
www.qwebappsec.org
www.aebappsec.org
www.waebappsec.org
www.awebappsec.org
www.sebappsec.org
www.wsebappsec.org
www.swebappsec.org
www.eebappsec.org
www.weebappsec.org
www.ewebappsec.org
www.wbappsec.org
www.wwbappsec.org
www.wewbappsec.org
www.wwebappsec.org
www.wsbappsec.org
www.wesbappsec.org
www.wdbappsec.org
www.wedbappsec.org
www.wdebappsec.org
www.wrbappsec.org
www.werbappsec.org
www.wrebappsec.org
www.weappsec.org
www.wevappsec.org
www.webvappsec.org
www.wevbappsec.org
www.wegappsec.org
www.webgappsec.org
www.wegbappsec.org
www.wehappsec.org
www.webhappsec.org
www.wehbappsec.org
www.wenappsec.org
www.webnappsec.org
www.wenbappsec.org
www.webppsec.org
www.webqppsec.org
www.webaqppsec.org
www.webqappsec.org
www.webwppsec.org
www.webawppsec.org
www.webwappsec.org
www.websppsec.org
www.webasppsec.org
www.websappsec.org
www.webzppsec.org
www.webazppsec.org
www.webzappsec.org
www.webapsec.org
www.webaopsec.org
www.webapopsec.org
www.webaoppsec.org
www.webalpsec.org
www.webaplpsec.org
www.webalppsec.org
www.webaposec.org
www.webapposec.org
www.webaplsec.org
www.webapplsec.org
www.webappec.org
www.webappwec.org
www.webappswec.org
www.webappwsec.org
www.webappeec.org
www.webappseec.org
www.webappesec.org
www.webappdec.org
www.webappsdec.org
www.webappdsec.org
www.webappzec.org
www.webappszec.org
www.webappzsec.org
www.webappxec.org
www.webappsxec.org
www.webappxsec.org
www.webappaec.org
www.webappsaec.org
www.webappasec.org
www.webappsc.org
www.webappswc.org
www.webappsewc.org
www.webappssc.org
www.webappsesc.org
www.webappssec.org
www.webappsdc.org
www.webappsedc.org
www.webappsrc.org
www.webappserc.org
www.webappsrec.org
www.webappse.org
www.webappsecx.org
www.webappsed.org
www.webappsecd.org
www.webappsef.org
www.webappsecf.org
www.webappsefc.org
www.webappsev.org
www.webappsecv.org
www.webappsevc.org
Last Tested: