Skip to content

Changes

https://twitter.com
Compared to previous audit · 11 weeks ago View previous audit

Santa Clara, United States Madrid, Spain

These audits ran from different locations. Timing metrics (TTFB, DNS, TLS) may reflect network path differences rather than site changes.

37
New issues
27
Resolved
25
score changes
CategoryPreviousCurrentChange
CompositeC (76)B (80) +4.000
PerformanceC (75)C (79) +4.000
SecurityC (75)B (85) +10.000
AccessibilityD (69)B (83) +14.000
SEOB (81)C (76) -5.000
InfrastructureC (75)C (79) +4.000
ComplianceB (86)D (69) -17.000
ContentC (77)B (84) +7.000
SustainabilityB (86)B (81) -5.000
MetricPreviousCurrentChange
Performance 52004000 -1200
Accessibility 89009300 +400
Best Practices 96009200 -400
SEO 1000010000
PWA 00
Desktop Performance 47005900 +1200
Desktop Accessibility 89008900
Desktop Best Practices 96009200 -400
Desktop SEO 1000010000
FCP 9.51 s1.87 s -7.64 s
LCP 13.31 s13.31 s
TBT 238 ms3.68 s +3.44 s
CLS 0.0000.000
Desktop FCP 1.19 s1.02 s -172 ms
Desktop LCP 2.86 s2.72 s -147 ms
Desktop TBT 353 ms491 ms +138 ms
Desktop CLS 0.2990.002 -0.297
TTFB 190 ms46 ms -143 ms
DNS 18 ms4 ms -13 ms
TLS 19 ms6 ms -14 ms
Connect 17 ms3 ms -14 ms
Total 190 ms47 ms -143 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

Projected vs. Actual

Previous
C 76
Projected
A+ 97
Actual
B 80
Fell short of projection
27 issues resolved since last audit
63 issues remaining
Resolving remaining issues could reach A+

Estimate — actual results may vary

CRITICAL 5 non-essential cookie(s) set without consent banner compliance
CRITICAL 5 tracking cookie(s) set before consent interaction compliance
CRITICAL Page has only 42 words — nearly empty seo
WARNING Cookie 'personalization_id' is missing the HttpOnly flag security
WARNING Page weighs 6.7 MB (2.5 MB transferred) performance
WARNING https://abs.twimg.com/responsive-web/client-web/ma...: 185 KB unused (50%) performance
WARNING No internal links found seo
WARNING 4 tracking-shaped cross-site cookie(s): guest_id, guest_id_ads, guest_id_marketing, personalization_id compliance
WARNING Unattributable: 688ms CPU time performance
WARNING Cookie 'guest_id_marketing' is missing the HttpOnly flag security
WARNING Dead-end page — no outgoing internal links seo
WARNING JavaScript is 1.8 MB — consider code splitting or lazy loading performance
WARNING security.txt has expired security
WARNING Third-party code accounts for 100% of page weight (2.5 MiB of 2.5 MiB) performance
WARNING Third-party scripts: 6442ms (90% of total) performance
WARNING https://abs.twimg.com/responsive-web/client-web/mo...: 70 KB unused (99%) performance
WARNING Page weight 2.5 MB exceeds 1 MB target by 1.5 MB performance
WARNING <iframe> missing title attribute (src="") accessibility
WARNING https://abs.twimg.com/responsive-web/client-web/on...: 2994ms CPU time performance
WARNING 3 font preload(s) missing `crossorigin` -- font will be downloaded twice performance
WARNING Transfer efficiency: 67% sustainability
WARNING 15 text node(s) render below 12 CSS pixels on mobile accessibility
WARNING https://abs.twimg.com/responsive-web/client-web/on...: 73 KB unused (35%) performance
WARNING HSTS max-age is too short (300s, should be ≥ 31536000s) security
WARNING 13 link(s) open in new tab without warning accessibility
WARNING Total JS execution time is 7.1 s -- over the 3.5s budget performance
WARNING 92 third-party resources (100% of weight) performance
WARNING Cookie 'guest_id_ads' is missing the HttpOnly flag security
WARNING SRI adoption: 0/3 third-party resources protected (0%) security
WARNING https://abs.twimg.com/responsive-web/client-web/ve...: 102 KB unused (50%) performance
WARNING 50 of 54 links are healthy content
WARNING Permissions-Policy header not set -- features default to allow-on-same-origin security
WARNING https://abs.twimg.com/responsive-web/client-web/ma...: 1929ms CPU time performance
WARNING https://x.com/: 383ms CPU time performance
WARNING https://abs.twimg.com/responsive-web/client-web/on...: 284ms CPU time performance
WARNING https://accounts.google.com/gsi/client: 72 KB unused (75%) performance
WARNING Thin content — only 42 words seo
CRITICAL 38 of 46 links are healthy content
CRITICAL 2 non-essential cookie(s) set without consent banner compliance
WARNING https://abs.twimg.com/responsive-web/client-web/ve...: 103 KB unused (30%) performance
WARNING https://abs.twimg.com/responsive-web/client-web/ma...: 3049ms CPU time performance
WARNING JavaScript is 1.4 MB — consider code splitting or lazy loading performance
WARNING No meta description tag found seo
WARNING Cookie '__cf_bm' has no SameSite attribute security
WARNING https://accounts.google.com/gsi/client: 69 KB unused (72%) performance
WARNING https://abs.twimg.com/responsive-web/client-web/i1...: 42 KB unused (23%) performance
WARNING Broken link: https://api.twitter.com content
WARNING External script from accounts.google.com lacks integrity attribute security
WARNING External script from appleid.cdn-apple.com lacks integrity attribute security
WARNING https://abs.twimg.com/responsive-web/client-web/ve...: 1452ms CPU time performance
WARNING https://abs.twimg.com/responsive-web/client-web/mo...: 75 KB unused (99%) performance
WARNING 21 link(s) open in new tab without warning accessibility
WARNING Page weight 1.7 MB exceeds 1 MB target by 695 KB performance
WARNING 69 third-party resources (100% of weight) performance
WARNING Thin content — only 153 words seo
WARNING Broken link: https://video.twimg.com content
WARNING External link from accounts.google.com lacks integrity attribute security
WARNING Third-party code accounts for 100% of page weight (1.7 MiB of 1.7 MiB) performance
WARNING Transfer efficiency: 71% sustainability
WARNING Third-party scripts: 5156ms (89% of total) performance
WARNING https://abs.twimg.com/responsive-web/client-web/ma...: 148 KB unused (52%) performance
WARNING Page has 153 words — thin content seo
WARNING No headings found accessibility
WARNING Unattributable: 639ms CPU time performance
CRITICAL robots.txt blocks all crawlers infrastructure
CRITICAL HTTP version does not redirect to HTTPS infrastructure
CRITICAL Soft 404: server returns HTTP 200 for non-existent pages accessibility
CRITICAL robots.txt has 'Disallow: /' but sitemap.xml is published -- contradictory signals seo
CRITICAL Viewport prevents user zooming compliance
CRITICAL 'unsafe-inline' found in script source security
WARNING Cookie 'ct0' is missing the HttpOnly flag security
WARNING No Permissions-Policy header security
WARNING sitemap.xml contains invalid XML infrastructure
WARNING sitemap.xml is empty — no URLs found infrastructure
WARNING Missing og:image content
WARNING External script from abs.twimg.com lacks integrity attribute security
WARNING No canonical tag found seo
WARNING Broken link: https://pbs.twimg.com content
WARNING Sitemap is empty -- 0 URLs listed seo
WARNING base-uri directive is missing security
WARNING Registrar lock is NOT enabled infrastructure
WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance
WARNING frame-ancestors directive is missing security
WARNING Permissions-Policy header is missing security
WARNING Broken link: https://abs.twimg.com content
WARNING X-Powered-By header reveals technology stack security
WARNING Referrer-Policy header is missing security
WARNING Skip navigation link is missing (WCAG 2.4.1) accessibility
WARNING Cookie 'guest_id' is missing the HttpOnly flag security
WARNING Broken link: https://api.x.com content
+ content-length 74
+ content-encoding gzip
+ accept-ranges bytes
+ via 1.1 varnish
cf-cache-status DYNAMIC
origin-cf-ray 9ed4b750793ff535-CDG
x-response-time
10 11
x-transaction-id
c16e00b455361f96 04594b67b6bd0fb0
strict-transport-security
max-age=631138519; includeSubdomains max-age=300
last-modified
Thu, 16 Apr 2026 16:55:10 GMT Thu, 09 Jul 2026 10:34:30 GMT
content-security-policy
connect-src 'self' blob: https://fonts.googleapis.com/css https://mapsresourc... connect-src 'self' blob: https://fonts.googleapis.com/css https://mapsresourc...
cache-control
no-cache, no-store, must-revalidate, pre-check=0, post-check=0 no-cache, private, must-revalidate, pre-check=0, post-check=0
set-cookie
guest_id=v1%3A177635851021955677; Max-Age=34214400; Expires=Mon, 17 May 2027 ... guest_id_marketing=v1%3A178359327013531344; Max-Age=63072000; Expires=Sat, 08...
vary
Accept, accept-encoding Accept
server
cloudflare envoy envoy

12 headers unchanged

+ Fastly CDN
+ Varnish Caching
+ Priority Hints Performance
Cloudflare Bot Management Security
Apple Sign-in Authentication

20 technologies unchanged

Looking ahead

+20 pts
B (80) Could reach A+ (100)
Compliance +30SEO +24Infrastructure +21Performance +21Accessibility +17Content +16Security +15Sustainability +4

Estimate — actual results may vary (63 issues to fix)

Website improvement report — Twitter

April 16, 2026 → July 9, 2026

C B 76 → 80 +4 pts

27

Resolved

37

New issues

26

Still remaining

Financial summary

Investment delivered

€7,693 in development time

Investment remaining

€9,662 to complete the remaining items

Ongoing risk

€1/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

MetricBeforeAfterChange
Overall score76 (C)80 (B)+4
Performance75 (C)79 (C)+4
Security75 (C)85 (B)+10
Accessibility69 (D)83 (B)+14
SEO81 (B)76 (C)-5
Infrastructure75 (C)79 (C)+4
Compliance86 (B)69 (D)-17
Content77 (C)84 (B)+7
Sustainability86 (B)81 (B)-5

Resolved (27)

  • https://abs.twimg.com/responsive-web/client-web/ve...: 103 KB unused (30%) (Performance)

    → Page loads faster for users

  • 38 of 46 links are healthy (Content)

    → Stronger social sharing and on-page quality

  • https://abs.twimg.com/responsive-web/client-web/ma...: 3049ms CPU time (Performance)

    → Page loads faster for users

  • JavaScript is 1.4 MB — consider code splitting or lazy loading (Performance)

    → Page loads faster for users

  • No meta description tag found (SEO)

    → Better search engine visibility

  • Cookie '__cf_bm' has no SameSite attribute (Security)

    → Reduced attack surface for visitors

  • https://accounts.google.com/gsi/client: 69 KB unused (72%) (Performance)

    → Page loads faster for users

  • https://abs.twimg.com/responsive-web/client-web/i1...: 42 KB unused (23%) (Performance)

    → Page loads faster for users

  • Broken link: https://api.twitter.com (Content)

    → Stronger social sharing and on-page quality

  • External script from accounts.google.com lacks integrity attribute (Security)

    → Reduced attack surface for visitors

  • External script from appleid.cdn-apple.com lacks integrity attribute (Security)

    → Reduced attack surface for visitors

  • https://abs.twimg.com/responsive-web/client-web/ve...: 1452ms CPU time (Performance)

    → Page loads faster for users

  • https://abs.twimg.com/responsive-web/client-web/mo...: 75 KB unused (99%) (Performance)

    → Page loads faster for users

  • 21 link(s) open in new tab without warning (Accessibility)

    → Improved usability for assistive technology users

  • Page weight 1.7 MB exceeds 1 MB target by 695 KB (Performance)

    → Page loads faster for users

…and 12 more resolved issue(s)

Recommended next steps (63)

  • Sprint 2

    5 non-essential cookie(s) set without consent banner (Compliance)

  • Sprint 2

    5 tracking cookie(s) set before consent interaction (Compliance)

  • Sprint 3

    Page has only 42 words — nearly empty (SEO)

  • Sprint 1

    robots.txt blocks all crawlers (Infrastructure)

  • Sprint 1

    HTTP version does not redirect to HTTPS (Infrastructure)

  • Sprint 1

    Soft 404: server returns HTTP 200 for non-existent pages (Accessibility)

  • Sprint 1

    robots.txt has 'Disallow: /' but sitemap.xml is published -- contradictory signals (SEO)

  • Sprint 1

    Viewport prevents user zooming (Compliance)

  • Sprint 3

    'unsafe-inline' found in script source (Security)

  • Sprint 1

    Cookie 'personalization_id' is missing the HttpOnly flag (Security)

  • Sprint 1

    Page weighs 6.7 MB (2.5 MB transferred) (Performance)

  • Sprint 3

    https://abs.twimg.com/responsive-web/client-web/ma...: 185 KB unused (50%) (Performance)

  • Sprint 1

    No internal links found (SEO)

  • Sprint 1

    4 tracking-shaped cross-site cookie(s): guest_id, guest_id_ads, guest_id_marketing, personalization_id (Compliance)

  • Sprint 1

    Unattributable: 688ms CPU time (Performance)

…and 48 more recommended item(s)

Send Feedback