https://sandbox.thesslstore.com/ssltools/ssl-checker.php
Performance
· 26 checks — Lighthouse + waterfall + sustainability rolled into one auditable list.SCORE
90
GRADE
A
FIX
3
REVIEW
2
PASS
18
INFO
3
Performance-focused optimization plan with CWV assessment, top offenders, and time estimates
71
90
96
40
First Contentful Paint First Contentful Paint — how long until the browser renders the first piece of content. Under 1.8s is good.
934 ms
Largest Contentful Paint Largest Contentful Paint — how long until the largest visible element loads. Under 2.5s is good.
2.72 s
Total Blocking Time Total Blocking Time — total time the main thread was blocked, preventing user input. Under 200ms is good.
1.34 s
Cumulative Layout Shift Cumulative Layout Shift — measures visual stability. How much the page layout shifts during loading. Under 0.1 is good.
0.002
Speed Index Speed Index — how quickly content is visually displayed during load. Under 3.4s is good.
1.01 s
Time to Interactive Time to Interactive — how long until the page is fully interactive and responds to user input. Under 3.8s is good.
3.65 s
Page Load Progression
567 ms
1.1 s
1.7 s 2.3 s
2.8 s 3.4 s 4.0 s
4.5 sChecks
2618 PASS 2 REVIEW 3 FIX
DThird-Party ImpactAction83% third-party, 0 ms blockingFIX
Third-Party Impact
Action83% third-party, 0 ms blocking
83% third-party, 0 ms blocking
Warning::
Third-party code accounts for 83% of page weight (470.9 KiB of 566.3 KiB)
Info::
Third-party blocking time is low (0 ms)
17%
83%
First-party Third-party
DJS Execution CostAction2386ms total JS executionFIX
JS Execution Cost
Action2386ms total JS execution
2386ms total JS execution
Warning::
https://sandbox.thesslstore.com/cdn-cgi/challenge-...: 1929ms CPU time
Warning::
Unattributable: 253ms CPU time
Info::
https://sandbox.thesslstore.com/ssltools/ssl-check...: 133ms CPU time
Info::
https://challenges.cloudflare.com/turnstile/v0/g/8...: 70ms CPU time
Info::
Third-party scripts: 70ms (3% of total)
Main Thread Breakdown
Script Evaluation 82% Other 12%
| Script | Total | Scripting | Parse/Compile | Party |
|---|---|---|---|---|
| https://sandbox.thesslstore.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=a0545773b80936e8 | 1929ms | 1862ms | 19ms | 1st |
| Unattributable | 253ms | 14ms | 0ms | 1st |
| https://sandbox.thesslstore.com/ssltools/ssl-checker.php | 133ms | 20ms | 3ms | 1st |
| https://challenges.cloudflare.com/turnstile/v0/g/8fc8ed1d8752/api.js?onload=NoWu9&render=explicit | 70ms | 56ms | 8ms | 3rd |
FHTTP CachingActionNo cache headersFIX
HTTP Caching
ActionNo cache headers
No cache headers
Warning::
No Cache-Control header found
Browsers will use heuristic caching, which can be unpredictable. Set explicit cache headers.
No Cache-Control header
Adding a Cache-Control header can significantly improve repeat-visit performance.
BHTTP/3 (QUIC)HTTP/3 not advertisedREVIEW
HTTP/3 (QUIC)
HTTP/3 not advertised
HTTP/3 not advertised
Info::
HTTP/3 (QUIC) is not advertised
HTTP/3 isn't advertised via Alt-Svc and the worker didn't negotiate h3. HTTP/3 reduces handshake latency (1-RTT instead of 2-3 RTTs) and is more resilient on lossy connections. Most modern CDNs (Cloudflare, Fastly, AWS CloudFront, Google Cloud CDN) support HTTP/3 with a single config switch -- consider enabling for mobile-heavy workloads.
BMain HTML Cache-ControlNo Cache-Control header on main HTML responseREVIEW
Main HTML Cache-Control
No Cache-Control header on main HTML response
No Cache-Control header on main HTML response
Info::
Main HTML response has no Cache-Control header
Without an explicit Cache-Control, browsers fall back to heuristic caching (~10% of Last-Modified age). Set `Cache-Control: no-cache` or `max-age=300` for HTML to control freshness explicitly -- prevents stale auth state and SPA shell drift.
A+Page Weight Budget566 KB transferred, 17 requestsPASS
Page Weight Budget
566 KB transferred, 17 requests
566 KB transferred, 17 requests
Info::
Page weighs 994 KB (566 KB transferred)
Info::
17 HTTP requests
Info::
Estimated 0.12 g CO2 per page load
566 KB transferred
17 requests
0.12 g CO2 per page load
Other 376.9 KiB 67%
HTML 88.1 KiB 16%
JavaScript 86.6 KiB 15%
Images 8.9 KiB 2%
Other 4.0 KiB 1%
Other 1.7 KiB 0%
0 2.4 MB 4.9 MB
Under budget
A+Text CompressionAll text resources are compressedPASS
Text Compression
All text resources are compressed
All text resources are compressed
Info::
All text resources are compressed
All text resources are properly compressed.
AImage Optimization3 images, 0 KB saveablePASS
Image Optimization
3 images, 0 KB saveable
3 images, 0 KB saveable
Info::
All images are well-optimized
3 images 9 KB
0 oversized -0 KB
3 legacy format
0 missing dimensions CLS risk
A+Font LoadingNo web fonts (system fonts)PASS
Font Loading
No web fonts (system fonts)
No web fonts (system fonts)
Info::
No web fonts loaded — system fonts are fastest
No web fonts loaded — system fonts are optimal.
A+JS Bundles7 scripts, 0 KB unusedPASS
JS Bundles
7 scripts, 0 KB unused
7 scripts, 0 KB unused
0 KB unused JavaScript
Downloaded but never executed on this page.
| Script | Size | Unused | Minified | Party |
|---|---|---|---|---|
| https://sandbox.thesslstore.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=a0545773b80936e8 | 65 KB | — | ✓ | 1st |
| blob:https://sandbox.thesslstore.com/2ff4b9b2-776e-46a3-83d6-fa82cfa4c8cc | 0 KB | — | ✓ | 3rd |
| https://challenges.cloudflare.com/turnstile/v0/g/8fc8ed1d8752/api.js?onload=NoWu9&render=explicit | 21 KB | — | ✓ | 3rd |
| blob:https://sandbox.thesslstore.com/8da15747-73bf-4420-b4a7-7d99ee983e04 | -0 KB | — | ✓ | 3rd |
| blob:https://challenges.cloudflare.com/3e5b27a7-66bd-4d31-872b-b0458b59b6c4 | 0 KB | — | ✓ | 3rd |
| blob:https://challenges.cloudflare.com/ee64dd95-7f32-4135-a9ac-d6b579d8d45e | -0 KB | — | ✓ | 3rd |
| blob:https://challenges.cloudflare.com/ee64dd95-7f32-4135-a9ac-d6b579d8d45e | -0 KB | — | ✓ | 3rd |
A+Resource CachingAll resources properly cachedPASS
Resource Caching
All resources properly cached
All resources properly cached
Info::
No caching issues found
All static resources have appropriate caching headers.
A+Critical Rendering PathNo render-blocking resourcesPASS
Critical Rendering Path
No render-blocking resources
No render-blocking resources
Info::
No render-blocking resources detected
A+Resource HintsNo optimization neededPASS
Resource Hints
No optimization needed
No optimization needed
Info::
No resource hint issues
A+Compression AlgorithmMain response uses brotliPASS
Compression Algorithm
Main response uses brotli
Main response uses brotli
Info::
Main HTML response uses brotli (Content-Encoding: br)
Brotli is the best text-compression algorithm for general use, ~20% smaller than gzip on average (40% on smaller files). Modern browsers all support it.
A+LCP Image PreloadLCP preload audit not availablePASS
LCP Image Preload
LCP preload audit not available
LCP preload audit not available
Info::
LCP image preload audit not available for this scan
A+Server-Timing Observability1 Server-Timing entries advertisedPASS
Server-Timing Observability
1 Server-Timing entries advertised
1 Server-Timing entries advertised
Info::
Server-Timing header advertises 1 timing entries
AServer Response Intelligence2 server-response signal(s) detectedPASS
Server Response Intelligence
2 server-response signal(s) detected
2 server-response signal(s) detected
Warning::
Compressed response missing `Vary` header
The page is served with `Content-Encoding: br` but has no `Vary` header. Without `Vary: Accept-Encoding`, intermediary caches (corporate proxies, ISP caches) may serve the compressed variant to clients that didn't send the matching `Accept-Encoding` -- the client sees garbled bytes. Add `Vary: Accept-Encoding` whenever the response is conditionally compressed.
Info::
No `ETag` or `Last-Modified` -- conditional GET not supported
Without either header, browsers can't issue conditional GETs and refresh always re-downloads the full response body even when nothing changed. Add `ETag: "<hash>"` (or `Last-Modified: <date>`) on cacheable responses; the server returns 304 Not Modified when the client's cached copy is still valid, saving bandwidth.
APage Weight Inventory17 resources · 566 KB · 0 KB savings availablePASS
Page Weight Inventory
17 resources · 566 KB · 0 KB savings available
17 resources · 566 KB · 0 KB savings available
Info::
Within 1MB page-weight target
Got: 566 KB
Warning::
11 third-party resources (83% of weight)
Info::
1 resources over 200KB
17 resources · 566.3 KiB · 11 third-party Within 1MB page-weight target
Other 67% · 378.7 KiB
Document 16% · 92.0 KiB
JavaScript 15% · 86.6 KiB
Image 2% · 8.9 KiB
| # | Resource | Type | Size | Cache | Unused | 3rd party | Issues |
|---|---|---|---|---|---|---|---|
| — | — | ||||||
| 17 resources | 566.3 KiB | ||||||
A+Render-Blocking ResourcesNo render-blocking resources detectedPASS
Render-Blocking Resources
No render-blocking resources detected
No render-blocking resources detected
Info::
No render-blocking resources detected in <head>
A+Third-Party ResourcesNo third-party resources detectedPASS
Third-Party Resources
No third-party resources detected
No third-party resources detected
AJavaScript Blocking1 JS blocking issue(s) detectedPASS
JavaScript Blocking
1 JS blocking issue(s) detected
1 JS blocking issue(s) detected
Warning::
1 render-blocking <script src> tag(s) without async/defer
Each `<script src=...>` without `async`, `defer`, or `type="module"` blocks HTML parsing while the browser fetches and executes it. The block lasts the entire round-trip + execution time -- on slow networks this translates directly into LCP delay. Add `defer` (executes after parse, in source order) for scripts that interact with the DOM, or `async` (executes whenever ready) for analytics / independent scripts. Module scripts (`type="module"`) are deferred by default.
A+CSS Performance DepthNo CSS performance depth issues detectedPASS
CSS Performance Depth
No CSS performance depth issues detected
No CSS performance depth issues detected
Info::
No CSS performance depth issues detected
A+Green HostingWhether the site is served from green-energy infrastructurePASS
Green Hosting
Whether the site is served from green-energy infrastructure
Green Hosting
This site is hosted on green energy infrastructure
Provider: Cloudflare
Network Waterfall17 requests over 3098msINFO
Network Waterfall
17 requests over 3098ms
HTML JavaScript CSS Images Fonts XHR/Fetch Other
Third-Party Script CostPer-script blocking time, transfer cost, and cache headersINFO
Third-Party Script Cost
Per-script blocking time, transfer cost, and cache headers
3% of JavaScript execution is third-party
First-party Third-party 70ms · 21KB · $1/mo
| Script | Category | Execution | Transfer | Unused | Monthly Cost | Verdict |
|---|---|---|---|---|---|---|
challenges.cloudflare.com challenges.cloudflare.com | Other | 70ms | 21 KB | — | $1/mo | Optional |
challenges.cloudflare.com
Other
Execution 70ms
Transfer 21 KB
Monthly Cost $1/mo
Image Optimization1 images, 6 KB total, 0 KB wastedINFO
Image Optimization
1 images, 6 KB total, 0 KB wasted
Image Optimization Audit
Total Images
1
Total Size
6 KB
1 missing dimensions
All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.