Skip to content

Changes

https://www.gov.uk
Compared to previous audit · 10 minutes ago View previous audit
2
New issues
2
Resolved
7
score changes
CategoryPreviousCurrentChange
CompositeA (90)A (90)
PerformanceA+ (97)A+ (97)
SecurityB (89)B (89)
AccessibilityB (87)B (87)
SEOA (96)A (94) -2.000
InfrastructureA (90)B (89) -1.000
ComplianceC (77)C (77)
ContentC (78)C (78)
SustainabilityA (92)A (92)
MetricPreviousCurrentChange
Performance 98009800
Accessibility 1000010000
Best Practices 1000010000
SEO 1000010000
PWA 00
Desktop Performance 1000010000
Desktop Accessibility 1000010000
Desktop Best Practices 1000010000
Desktop SEO 1000010000
FCP 1.80 s1.80 s
LCP 1.85 s1.84 s
TBT 22 ms14 ms -8 ms
CLS 0.0000.000
Desktop FCP 401 ms402 ms
Desktop LCP 415 ms414 ms
Desktop TBT 0 ms0 ms
Desktop CLS 0.0000.000
TTFB 55 ms194 ms +139 ms
DNS 51 ms52 ms
TLS 2 ms2 ms +1 ms
Connect 0 ms0 ms -0 ms
Total 55 ms195 ms +140 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

WARNING Missing or non-HTML5 doctype seo
WARNING 4 images significantly larger than display size content
WARNING 2 images significantly larger than display size content
WARNING Domain expires in 74 days infrastructure
WARNING Registrar lock is NOT enabled infrastructure
WARNING Cross-Origin-Embedder-Policy header is missing security
WARNING Title is only 6 characters — consider expanding seo
WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance
WARNING Cross-Origin-Opener-Policy header is missing security
WARNING No DMARC record found security
WARNING 1 link(s) open in new tab without warning accessibility
WARNING https://www.gov.uk/assets/frontend/application-1a5...: 26 KB unused (64%) performance
WARNING HSTS is missing includeSubDomains security
WARNING form-action directive is missing security
WARNING No SPF record found security
WARNING CNAME record at zone apex infrastructure
WARNING All 4 images use legacy formats (JPEG/PNG/GIF) content
WARNING 4 images missing alt text content
content-security-policy
default-src 'self'; base-uri 'none'; script-src 'self' www.google-analytics.c... default-src 'self'; base-uri 'none'; script-src 'self' www.google-analytics.c...
x-runtime
0.034705 0.020972
etag
W/"2427204514f0185461a7d66a825156db" W/"f57ae06f2750cd7aa44df3f136876a87"

16 headers unchanged

Technology stack unchanged

12 technologies unchanged

Looking ahead

+6 pts
A (90) Could reach A (96)
Security +11Content +10Infrastructure +8SEO +6Accessibility +4Compliance +4Performance +3

Estimate — actual results may vary (16 issues to fix)

Website improvement report — Gov

May 9, 2026 → May 9, 2026

A A 90 → 90 0 pts

2

Resolved

2

New issues

14

Still remaining

Financial summary

Investment delivered

£150 in development time

Investment remaining

£1,519 to complete the remaining items

Ongoing risk

£0/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

MetricBeforeAfterChange
Overall score90 (A)90 (A)0
Performance97 (A+)97 (A+)0
Security89 (B)89 (B)0
Accessibility87 (B)87 (B)0
SEO96 (A)94 (A)-2
Infrastructure90 (A)89 (B)-1
Compliance77 (C)77 (C)0
Content78 (C)78 (C)0
Sustainability92 (A)92 (A)0

Resolved (2)

  • 2 images significantly larger than display size (Content)

    → Stronger social sharing and on-page quality

  • Domain expires in 74 days (Infrastructure)

    → More reliable delivery

Recommended next steps (16)

  • Sprint 1

    Missing or non-HTML5 doctype (SEO)

  • Sprint 2

    4 images significantly larger than display size (Content)

  • Sprint 1

    Registrar lock is NOT enabled (Infrastructure)

  • Sprint 2

    Cross-Origin-Embedder-Policy header is missing (Security)

  • Sprint 1

    Title is only 6 characters — consider expanding (SEO)

  • Sprint 2

    GDPR Article 13 disclosure coverage: 0 / 8 categories (Compliance)

  • Sprint 1

    Cross-Origin-Opener-Policy header is missing (Security)

  • Sprint 2

    No DMARC record found (Security)

  • Sprint 1

    1 link(s) open in new tab without warning (Accessibility)

  • Sprint 3

    https://www.gov.uk/assets/frontend/application-1a5...: 26 KB unused (64%) (Performance)

  • Sprint 1

    HSTS is missing includeSubDomains (Security)

  • Sprint 1

    form-action directive is missing (Security)

  • Sprint 1

    No SPF record found (Security)

  • Sprint 1

    CNAME record at zone apex (Infrastructure)

  • Sprint 2

    All 4 images use legacy formats (JPEG/PNG/GIF) (Content)

…and 1 more recommended item(s)

Send Feedback