Skip to content
https://gitea.io

Infrastructure

· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.
SCORE
91
GRADE
A
FIX
0
REVIEW
3
PASS
5
INFO
1
Probed from Madrid, Spain
301 Moved Permanently
Checks
9
5 PASS 3 REVIEW
C
Crawlability
Action
robots.txt present, sitemap with 0 URLs
REVIEW
robots.txt present, sitemap with 0 URLs
Info::
robots.txt is present
Got: 10240 bytes
Info::
sitemap.xml is present
Warning::
sitemap.xml contains invalid XML
Search engines may not be able to parse the sitemap. Fix XML validation errors.
Warning::
sitemap.xml is empty — no URLs found
An empty sitemap provides no value. Add <url> entries for your pages.
Info::
robots.txt does not reference a sitemap
Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.

Search engines may not be able to parse the sitemap. Fix XML validation errors.

Why this matters

An unparseable sitemap is silently ignored by Google — the URLs it advertises are never queued for crawl.

Learn more

Google's sitemap parser is strict about XML validity. A single unescaped `&` or unclosed tag invalidates the whole file. Run your sitemap through a validator (Search Console's Sitemaps report flags it) and fix the offending entry. Most generators escape correctly; mistakes usually come from manually-written entries.

Source: sitemaps.org / Google Search Central

An empty sitemap provides no value. Add <url> entries for your pages.

Why this matters

An empty sitemap signals 'no content to index' to Google — actively harmful versus having no sitemap at all.

Learn more

Google compares URLs in the sitemap against URLs it has crawled. An empty sitemap on a site with thousands of pages signals abandonment. Either populate it correctly (most CMSes auto-generate) or delete the file and let Google crawl normally.

Source: Google Search Central / sitemaps.org

Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.

Why this matters

robots.txt omits Sitemap: directive — crawlers must fetch /sitemap.xml by convention; reliable but missing the explicit hint.

Source: sitemaps.org

robots.txt 200 OK
Size 10240 B Sitemaps referenced 0 User-agents Blocking No — crawling allowed
<!DOCTYPE html>
<html >
<head><meta charset="utf-8"><meta http-equiv="Content-Security-Policy" content="base-uri 'none'; font-src 'self' https: data:; form-action 'self'; img-src 'self' data: https: https://*.gitea.com https://js.hs-scripts.com https://www.google-analytics.com https://avatars.githubusercontent.com https://forms.hscollectedforms.net https://www.googletagmanager.com https://plausible.io https://www.google.com https://googleads.g.doubleclick.net https://*.hotjar.com https://*.hubspot.com; object-src 'none'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://*.gitea.com https://js.hs-scripts.com https://www.google-analytics.com https://avatars.githubusercontent.com https://forms.hscollectedforms.net https://www.googletagmanager.com https://plausible.io https://www.google.com https://googleads.g.doubleclick.net https://*.hotjar.com https://*.hubspot.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.gitea.com https://js.hs-scripts.com https://www.google-analytics.com https://avatars.githubusercontent.com https://forms.hscollectedforms.net https://www.googletagmanager.com https://plausible.io https://www.google.com https://googleads.g.doubleclick.net https://*.hotjar.com https://*.hubspot.com 'sha256-6bOg0+lK47EBtruG5SsS775ShlAU8HySVBFG4JcDTFw=' 'sha384-P+FHlBmpB8T9B2+Z000KGOCtLCH7j8QzzBkJp4YTqGmhyFodHeTXKi7SfNmr3L2m' 'sha384-Wwt5Mdfp5LOjZyx0HdH7xhQLsWBYsnUFZiMi0k5QR0VyNzRt7SPyLDXpSdiipN5c' 'sha384-FNBCcgUnD1xsO/2deYCgZLZ3nSQFmKe54VQ3KrksEPX17Tsh40sfg3b2yRN5V0MI' 'sha384-vHmVfVrgmLxIN0m1reVb6uyaJWB9NZW+/hWcj/u2Ye7DFln0yukonWRWDvMMFZVF' 'sha384-wV/FyIfkoKuneA9gx32UbcC1rWydYJhlr+cMCHu0oN57ZtVcBz8nUCI/A5rPOyHo' 'sha384-dZxCwc6vU0CuhhgIyamLk/Glusart6mILBWtHLLDll8ImcoSV8avkVOfzAs9AtdM' 'sha384-H5lV+X4ArIi7UbTW1dbFOP7yUdafNa32kqlMY4klPH4jNHcZUPZnoA/sbauJ8J+p' 'sha384-SGi8/+reH11PtBjDk3wXAewiXTyKG97UEeSo2DbN55eHdo9ivl3S7y7hWZi/6tRz' 'sha384-fqUoYDFnkrB+Nc0PQKyrn0ndJw8V9U+utR3yEXBz7iAyKMk8LmbfDAEJl7BmTB6f' 'sha384-wtjKWFJGuMmMwIkPGhuEMp26ujkXc4D918kqpymUl96Ivce+KGkF+n5Wj9X35q4R'; upgrade-insecure-requests; default-src 'self' https://*.gitea.com https://js.hs-scripts.com https://www.google-analytics.com https://avatars.githubusercontent.com https://forms.hscollectedforms.net https://www.googletagmanager.com https://plausible.io https://www.google.com https://googleads.g.doubleclick.net https://*.hotjar.com https://*.hubspot.com; connect-src 'self' https: wss: ws: https://*.gitea.com https://js.hs-scripts.com https://www.google-analytics.com https://avatars.githubusercontent.com https://forms.hscollectedforms.net https://www.googletagmanager.com https://plausible.io https://www.google.com https://googleads.g.doubleclick.net https://*.hotjar.com https://*.hubspot.com;">
<meta name="viewport" content="width=device-width, initial-scale=1">
<title>Gitea Official Website</title>
<link rel="icon" type="image/x-icon" href="/favicon.ico">
<link rel="icon" type="image/svg+xml" href="/gitea.svg">
<link rel="mask-icon" type="image/svg+xml" href="/gitea.svg" color="#000000">
<link rel="apple-touch-icon" type="image/x-icon" href="/gitea.png">
<script src="//js.hs-scripts.com/44783791.js" async defer id="hs-script-loader"></script>
<meta property="og:title" content="Gitea Official Website">
<meta name="description" content="Gitea - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD">
<meta property="og:description" content="Gitea - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD">
<meta property="og:logo" content="https://about.gitea.com/gitea.png">
<meta property="og:image" content="https://about.gitea.com/gitea.png">
<meta name="twitter:card" content="summary_large_image">
<link rel="preload" as="fetch" crossorigin="anonymous" href="/_payload.json">
<style>/*! tailwindcss v3.3.5 | MIT License | https://tailwindcss.com*/*,:after,:before{border:0 solid #e5e7eb;box-sizing:border-box}:after,:before{--tw-content:""}html{-webkit-text-size-adjust:100%;font-feature-settings:normal;font-family:Open Sans,-apple-system,Segoe UI,system-ui,Roboto,Helvetica Neue,Arial;font-variation-settings:normal;line-height:1.5;-moz-tab-size:4;-o-tab-size:4;tab-size:4}body{line-height:inherit;margin:0}hr{border-top-width:1px;color:inherit;height:0}abbr:where([title]){-webkit-text-decoration:underline dotted;text-decoration:underline dotted}h1,h2,h3,h4,h5,h6{font-size:inherit;font-weight:inherit}a{color:inherit;text-decoration:inherit}b,strong{font-weight:bolder}code,kbd,pre,samp{font-family:ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,Liberation Mono,Courier New,monospace;font-size:1em}small{font-size:80%}sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}table{border-collapse:collapse;border-color:inherit;text-indent:0}button,input,optgroup,select,textarea{font-feature-settings:inherit;color:inherit;font-family:inherit;font-size:100%;font-variation-settings:inherit;font-weight:inherit;line-height:inherit;margin:0;padding:0}button,select{text-transform:none}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button;background-color:transparent;background-image:none}:-moz-focusring{outline:auto}:-moz-ui-invalid{box-shadow:none}progress{vertical-align:baseline}::-webkit-inner-spin-button,::-webkit-outer-spin-button{height:auto}[type=search]{-webkit-appearance:textfield;outline-offset:-2px}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-file-upload-button{-webkit-appearance:button;font:inherit}summary{display:list-item}blockquote,dd,dl,figure,h1,h2,h3,h4,h5,h6,hr,p,pre{margin:0}fieldset{margin:0}fieldset,legend{padding:0}menu,ol,ul{list-style:none;margin:0;padding:0}dialog{padding:0}textarea{resize:vertical}input::-moz-placeholder,textarea::-moz-placeholder{color:#9ca3af;opacity:1}input::placeholder,textarea::placeholder{color:#9ca3af;opacity:1}[role=button],button{cursor:pointer}:disabled{cursor:default}audio,canvas,embed,iframe,img,object,svg,video{display:block;vertical-align:middle}img,video{height:auto;max-width:100%}[hidden]{display:none}[multiple],[type=date],[type=datetime-local],[type=email],[type=month],[type=number],[type=password],[type=search],[type=tel],[type=text],[type=time],[type=url],[type=week],input:where(:not([type])),select,textarea{--tw-shadow:0 0 #0000;-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:#fff;border-color:#6b7280;border-radius:0;border-width:1px;font-size:1rem;line-height:1.5rem;padding:.5rem .75rem}[multiple]:focus,[type=date]:focus,[type=datetime-local]:focus,[type=email]:focus,[type=month]:focus,[type=number]:focus,[type=password]:focus,[type=search]:focus,[type=tel]:focus,[type=text]:focus,[type=time]:focus,[type=url]:focus,[type=week]:focus,input:where(:not([type])):focus,select:focus,textarea:focus{--tw-ring-inset:var(--tw-empty,/*!*/ /*!*/);--tw-ring-offset-width:0px;--tw-ring-offset-color:#fff;--tw-ring-color:#2563eb;--tw-ring-offset-shadow:var(--tw-ring-inset) 0 0 0 var(--tw-ring-offset-width) var(--tw-ring-offset-color);--tw-ring-shadow:var(--tw-ring-inset) 0 0 0 calc(1px + var(--tw-ring-offset-width)) var(--tw-ring-color);border-color:#2563eb;box-shadow:var(--tw-ring-offset-shadow),var(--tw-ring-shadow),var(--tw-shadow);outline:2px solid transparent;outline-offset:2px}input::-moz-placeholder,textarea::-moz-placeholder{color:#6b7280;opacity:1}input::placeholder,textarea::placeholder{color:#6b7280;opacity:1}::-webkit-datetime-edit-fields-wrapper{padding:0}::-webkit-date-and-time-value{min-height:1.5em;text-align:inherit}::-webkit-datetime-edit{display:inline-flex}::-webkit-datetime-edit,::-webkit-datetime-edit-day-field,::-webkit-datetime-edit-hour-field,::-webkit-datetime-edit-meridiem-field,::-webkit-datetime-edit-millisecond-field,::-webkit-datetime-edit-minute-field,::-webkit-datetime-edit-month-field,::-webkit-datetime-edit-second-field,::-webkit-datetime-edit-year-field{padding-bottom:0;padding-top:0}select{background-image:url("data:image/svg+xml;charset=utf-8,%3Csvg xmlns='http://www.w3.org/2000/svg' fill='none' viewBox='0 0 20 20'%3E%3Cpath stroke='%236b7280' stroke-linecap='round' stroke-linejoin='round' stroke-width='1.5' d='m6 8 4 4 4-4'/%3E%3C/svg%3E");background-position:right .5rem center;background-repeat:no-repeat;background-size:1.5em 1.5em;padding-right:2.5rem;-webkit-print-color-adjust:exact;print-color-adjust:exact}[multiple],[size]:where(select:not([size="1"])){background-image:none;background-position:0 0;background-repeat:unset;background-size:initial;padding-right:.75rem;-webkit-print-color-adjust:unset;print-color-adjust:unset}[type=checkbox],[type=radio]{--tw-shadow:0 0 #0000;-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:#fff;background-origin:border-box;border-color:#6b7280;border-width:1px;color:#2563eb;display:inline-block;flex-shrink:0;height:1rem;padding:0;-webkit-print-color-adjust:exact;print-color-adjust:exact;-webkit-user-select:none;-moz-user-select:none;user-select:none;vertical-align:middle;width:1rem}[type=checkbox]{border-radius:0}[type=radio]{border-radius:100%}[type=checkbox]:focus,[type=radio]:focus{--tw-ring-inset:var(--tw-empty,/*!*/ /*!*/);--tw-ring-offset-width:2px;--tw-ring-offset-color:#fff;--tw-ring-color:#2563eb;--tw-ring-offset-shadow:var(--tw-ring-inset) 0 0 0 var(--tw-ring-offset-width) var(--tw-ring-offset-color);--tw-ring-shadow:var(--tw-ring-inset) 0 0 0 calc(2px + var(--tw-ring-offset-width)) var(--tw-ring-color);box-shadow:var(--tw-ring-offset-shadow),var(--tw-ring-shadow),var(--tw-shadow);outline:2px solid transparent;outline-offset:2px}[type=checkbox]:checked,[type=radio]:checked{background-color:currentColor;background-position:50%;background-repeat:no-repeat;background-size:100% 100%;border-color:transparent}[type=checkbox]:checked{background-image:url("data:image/svg+xml;charset=utf-8,%3Csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' viewBox='0 0 16 16'%3E%3Cpath d='M12.207 4.793a1 1 0 0 1 0 1.414l-5 5a1 1 0 0 1-1.414 0l-2-2a1 1 0 0 1 1.414-1.414L6.5 9.086l4.293
sitemap.xml 200 OK
Type URL Set URLs 0 entries Valid XML No
B
TLS Certificate Expiry & Recommendations
233 days until leaf cert expires — 3 issues to address
REVIEW

Certificate validity

233
days left
0d 30d 60d 90d+

Recommended actions

  • Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
  • Enable DNSSEC on your domain for DNS spoofing protection
  • Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
B
CDN & Delivery
AWS CloudFront (FunctionGeneratedResponse from cloudfront)
REVIEW
AWS CloudFront (FunctionGeneratedResponse from cloudfront)
Info::
Site is served via AWS CloudFront CDN (edge: MAD53-P1)
Got: x-amz-cf-id: JLeDId_fpScjkMCruT93ZLLTuMaBgZQnS72fDfK6Hu_k53hJ4JKGPA==
Info::
CDN cache status: FunctionGeneratedResponse from cloudfront
CDN Detected: AWS CloudFront
Provider AWS CloudFront Cache Status FunctionGeneratedResponse from cloudfront Evidence x-amz-cf-id: JLeDId_fpScjkMCruT93ZLLTuMaBgZQnS72fDfK6Hu_k53hJ4JKGPA==
A+
DNS Records
4 A records, 29 ms lookup
PASS
4 A records, 29 ms lookup
Info::
Resolves to 4 IPv4 address(es)
Got: 18.154.29.129, 18.154.29.48, 18.154.29.78, 18.154.29.125
Info::
Has 8 IPv6 (AAAA) record(s)
Got: 2600:9000:24dd:9800:8:efb6:a680:93a1, 2600:9000:24dd:2400:8:efb6:a680:93a1, 2600:9000:24dd:ac00:8:efb6:a680:93a1, 2600:9000:24dd:3e00:8:efb6:a680:93a1, 2600:9000:24dd:e800:8:efb6:a680:93a1, 2600:9000:24dd:3200:8:efb6:a680:93a1, 2600:9000:24dd:e400:8:efb6:a680:93a1, 2600:9000:24dd:4000:8:efb6:a680:93a1
Info::
4 nameserver(s) configured
Got: ns-2029.awsdns-61.co.uk, ns-173.awsdns-21.com, ns-1454.awsdns-53.org, ns-955.awsdns-55.net
Info::
2 mail exchanger(s) configured
Info::
CAA records not checked
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Info::
SPF record present in TXT
Info::
DNS resolution time: 29 ms
Got: 29 ms
A18.154.29.129, 18.154.29.48, 18.154.29.78, 18.154.29.125
AAAA2600:9000:24dd:9800:8:efb6:a680:93a1, 2600:9000:24dd:2400:8:efb6:a680:93a1, 2600:9000:24dd:ac00:8:efb6:a680:93a1, 2600:9000:24dd:3e00:8:efb6:a680:93a1, 2600:9000:24dd:e800:8:efb6:a680:93a1, 2600:9000:24dd:3200:8:efb6:a680:93a1, 2600:9000:24dd:e400:8:efb6:a680:93a1, 2600:9000:24dd:4000:8:efb6:a680:93a1
CNAME
NSns-2029.awsdns-61.co.uk, ns-173.awsdns-21.com, ns-1454.awsdns-53.org, ns-955.awsdns-55.net
MX
10 mx.zoho.com
20 mx2.zoho.com
TXT
SPF v=spf1 include:zoho.com ~all
google-site-verification=rV_zuxLtm6JlGLCYjvaVLoOhoyDIrs1TgiXMPqjIJ0E
_globalsign-domain-verification=78YQkZa0jUZz3fbOqCSPgGaeP8Z9Ph_y1AtqN-K6Hk
google-site-verification=uV9NAomy0NXbEhuAzwri4-IiY0_MgvfI7pf-5MTu2dY
CAALookup not available with standard resolver
Resolved in 29 ms

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

Why this matters

Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.

A
Redirect Chain
1 redirect(s), 58 ms total
PASS
1 redirect(s), 58 ms total
Info::
Single redirect
Got: https://gitea.io → https://about.gitea.com/ (301)
Info::
Cross-domain redirect detected

https://gitea.io

13 ms · HTTP/1.1

301

https://about.gitea.com/

45 ms · HTTP/1.1 FINAL

#URLStatusTimeProtocolServer
1https://gitea.io30113 msHTTP/1.1CloudFront
2https://about.gitea.com/20045 msHTTP/1.1AmazonS3

See the visual redirect chain in the HTTP Probe tab →

A+
IPv6 Readiness
IPv6 reachable (1 ms)
PASS
IPv6 reachable (1 ms)
Info::
IPv6 is configured and reachable at 2600:9000:24dd:9800:8:efb6:a680:93a1, 2600:9000:24dd:2400:8:efb6:a680:93a1, 2600:9000:24dd:ac00:8:efb6:a680:93a1, 2600:9000:24dd:3e00:8:efb6:a680:93a1, 2600:9000:24dd:e800:8:efb6:a680:93a1, 2600:9000:24dd:3200:8:efb6:a680:93a1, 2600:9000:24dd:e400:8:efb6:a680:93a1, 2600:9000:24dd:4000:8:efb6:a680:93a1
Got: 1 ms connect
IPv6 Ready
AAAA Records 2600:9000:24dd:9800:8:efb6:a680:93a1, 2600:9000:24dd:2400:8:efb6:a680:93a1, 2600:9000:24dd:ac00:8:efb6:a680:93a1, 2600:9000:24dd:3e00:8:efb6:a680:93a1, 2600:9000:24dd:e800:8:efb6:a680:93a1, 2600:9000:24dd:3200:8:efb6:a680:93a1, 2600:9000:24dd:e400:8:efb6:a680:93a1, 2600:9000:24dd:4000:8:efb6:a680:93a1 Connection Reachable (1 ms)
A+
URL Variants
www/non-www, trailing slash, HTTP→HTTPS
PASS
www/non-www, trailing slash, HTTP→HTTPS
Info::
HTTP correctly 301-redirects to HTTPS

www / non-www

https://www.gitea.io/
200https://gitea.io/

HTTP → HTTPS

301http://gitea.io/ https://gitea.io/

Consistent

A+
HTTP Probe Timing
Total 49 ms — DNS, TCP, TLS, TTFB, content transfer breakdown
PASS
DNS Lookup DNS Lookup — time to resolve the domain name to an IP address.
36 ms
TCP Connect TCP Connect — time to establish a TCP connection to the server.
1 ms
TLS Handshake TLS Handshake — time to complete the HTTPS encryption handshake.
5 ms
Time to First Byte Time to First Byte — how long the server takes to respond with the first byte of data.
49 ms
Total Time Total request time from DNS lookup through full response.
49 ms

Connection waterfall

DNS Lookup 36 ms TCP Connect 1 ms TLS Handshake 5 ms Server Processing 8 ms Content Transfer 0 ms
Domain Intelligence
Domain intelligence data not available
INFO
Domain intelligence data not available

RDAP and WHOIS lookup both failed

All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.

Send Feedback