Spain · Madrid Completed: Apr 22, 2026 22:28 UTCMobile 375 × 812
Desktop 1440 × 900
Score: 75 / 100
Based on 8 categories, 0 sections
Decent speed, but optimizing further could improve engagement.
Several missing protections leave your users and data exposed.
Several issues make your site difficult for assistive technology users.
Well-optimized for search — your content is discoverable.
Solid infrastructure — fast server responses across the board.
Mostly compliant — a few items need attention.
Rich content metadata — your pages look great everywhere.
Reasonable footprint with room for optimization.
The overall score is a weighted average of individual category scores. Categories with more impact on user experience and security carry more weight.
Weights reflect general web best practices. Individual needs may differ.
Content-Security-Policy header is missing
Security gaps expose your site and users to attacks, eroding trust.
No Content-Security-Policy header found
Security gaps expose your site and users to attacks, eroding trust.
is missing width/height — may cause layout shift
Performance issues directly impact user engagement and conversion rates.
152 third-party resources (100% of weight)
Performance issues directly impact user engagement and conversion rates.
153 HTTP requests — consider bundling or reducing
Performance issues directly impact user engagement and conversion rates.
High impact, low effort — start here.
High impact, requires investment.
Small gains, minimal effort.
Nothing in this quadrant — good news.
Low impact, high effort — do last.
Nothing in this quadrant — good news.
[](https://beavercheck.com/results/9e07aebb-d26f-4370-becb-69557b3135e2)<a href="https://beavercheck.com/results/9e07aebb-d26f-4370-becb-69557b3135e2"><img src="https://beavercheck.com/badge?url=https%3A%2F%2Fusbank.com" alt="BeaverCheck Score"></a>https://beavercheck.com/badge?url=https%3A%2F%2Fusbank.comThis badge auto-updates with your latest scan result.
Your site performs reasonably well, but a few targeted fixes could meaningfully improve results. Your LCP of 15.3s exceeds Google's 2.5s 'Good' threshold and the 3 performance issues below directly contribute to it. Addressing the critical issues below would have the most immediate impact on your user trust.
4 barrier(s) likely increasing bounce by ~23%.
Page takes 15.3s to load
+12% bounceUsers abandon at ~3s — you're 12.8s over the 2.5s threshold
Fix: Optimize render-blocking resources, preload the hero image, and compress images
Page feels frozen for 2.2s
+5% bounceClicks on the primary CTA are ignored while JavaScript runs
Fix: Break up long tasks; defer non-critical JavaScript to post-hydration
No HSTS header
+1% bounceReturning visitors are briefly exposed to downgrade attacks on first request
Fix: Set Strict-Transport-Security: max-age=31536000; includeSubDomains
No Content-Security-Policy header
+1% bounceHigher XSS blast radius — one compromised script can exfiltrate the checkout form
Fix: Ship a reporting-only CSP first, then enforce once violations are clean
Preliminary CRO audit — each barrier links to the tab with detailed analysis.
$700 investment → $0.53/month returns + USD 7,500 risk avoided
$700
7h · 5 findings
$0.53 /mo
~$6.32 / year
USD 7,500
if kept compliant
$100 — in quick wins — start here for the fastest payback
Figures combine localized regulatory fine ceilings, search/conversion value priced against local CPC, and bandwidth waste estimates. Results depend on implementation quality and audience composition. Not legal or financial advice.
7.0 developer hours at $100/hr
Based on United States rates ($100/hr)
Start here for the best return on investment
$626 / month at risk
~$7,506 / year if left unfixed
$7,500
+1 more
$0.53 /mo
6580.3 MB/mo × 0.080 USD/GB
Compliance figures represent the statutory maximum fine for the most severe triggered category, capped per regulation — not the sum of per-finding penalties. Based on published regulatory fine ranges. This is not legal advice.
Unique monthly visitors from your analytics
Purchases, signups, or key actions
Optional — for revenue estimation
more engaged visitors from reduced bounce
Fix 2 critical issues to capture this value
Based on Google/Deloitte research ("Milliseconds Make Millions") showing a ~7% bounce rate increase per additional second of LCP above the 2.5s "Good" threshold.
Your site's LCP: → estimated after fixes.
These are estimates based on industry research — actual results vary
Your data stays in your browser — nothing is sent to our servers
Thanks for your feedback!
We'll use a cached audit if available, or offer to scan.
Industry-standard audits powered by Google Lighthouse.
Key metrics that affect user experience.
First Contentful Paint First Contentful Paint — how long until the browser renders the first piece of content. Under 1.8s is good.
5.19 s
Largest Contentful Paint Largest Contentful Paint — how long until the largest visible element loads. Under 2.5s is good.
15.33 s
Total Blocking Time Total Blocking Time — total time the main thread was blocked, preventing user input. Under 200ms is good.
2.18 s
Cumulative Layout Shift Cumulative Layout Shift — measures visual stability. How much the page layout shifts during loading. Under 0.1 is good.
0.000
Speed Index Speed Index — how quickly content is visually displayed during load. Under 3.4s is good.
7.21 s
Time to Interactive Time to Interactive — how long until the page is fully interactive and responds to user input. Under 3.8s is good.
22.34 s
Audit breakdown by category with detailed findings.
Remove large, duplicate JavaScript modules from bundles to reduce unnecessary bytes consumed by network activity.
Performance issues directly impact user engagement and conversion rates.
Polyfills and transforms enable older browsers to use new JavaScript features. However, many aren't necessary for modern browsers. Consider modifying your JavaScript build process to not transpile Baseline features, unless you know you must support older browsers. Learn why most sites can deploy ES6+ code without transpiling
Shipping ES5 transpiled code to modern browsers wastes bytes — every user with an evergreen browser pays for compatibility you don't need.
Most users today run browsers that natively support ES6+, async/await, optional chaining, and the rest of modern JavaScript. Transpiling to ES5 'just in case' adds 20-40% to your bundle for no benefit. Configure your build to target a modern browserslist, or ship a differential bundle pair (modern + legacy) with the module/nomodule pattern.
Source: Google web.dev / Lighthouse
3rd party code can significantly impact load performance. Reduce and defer loading of 3rd party code to prioritize your page's content.
Performance issues directly impact user engagement and conversion rates.
A long cache lifetime can speed up repeat visits to your page. Learn more about caching.
Performance issues directly impact user engagement and conversion rates.
Your first network request is the most important. Reduce its latency by avoiding redirects, ensuring a fast server response, and enabling text compression.
Performance issues directly impact user engagement and conversion rates.
Reducing the download time of images can improve the perceived load time of the page and LCP. Learn more about optimizing image size
Performance issues directly impact user engagement and conversion rates.
| URL | Resource Size | Est Savings | |
|---|---|---|---|
Vikings player Justin Jefferson holding a football div.cs-2-lg > div.c-8-lg > picture.img > img.backgrounded | /content/dam/usbank/en/images/photos/homepage/photo-justi... | 42.4 KiB | 22.5 KiB |
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-outdo... | 61.2 KiB | 13.0 KiB |
Optimize LCP by making the LCP image discoverable from the HTML immediately, and avoiding lazy-loading
Performance issues directly impact user engagement and conversion rates.
Avoid chaining critical requests by reducing the length of chains, reducing the download size of resources, or deferring the download of unnecessary resources to improve page load.
Performance issues directly impact user engagement and conversion rates.
Requests are blocking the page's initial render, which may delay LCP. Deferring or inlining can move these network requests out of the critical path.
Performance issues directly impact user engagement and conversion rates.
| URL | Transfer Size | Duration |
|---|---|---|
| tags.tiqcdn.com/utag/usbank/global-sync/prod/utag.sync.js | 50.0 KiB | 1.6 s |
| www.datadoghq-browser-agent.com/us1/v6/datadog-rum.js | 58.3 KiB | 1.6 s |
| /etc.clientlibs/usbank/clientlibs/clientlib-ghp/styles/gh... | 81.5 KiB | 1.1 s |
| /etc.clientlibs/usbank/components/structure/ghp-page/clie... | 1.1 KiB | |
| www.usbank.com/content/usbank/LoginModuleHelpers/loginhotfixesGlobalTemp.css | 2.8 KiB |
These insights are also available in the Chrome DevTools Performance Panel - record a trace to view more detailed information.
Redirects introduce additional delays before the page can be loaded. Learn how to avoid page redirects.
Performance issues directly impact user engagement and conversion rates.
| URL | Time Spent |
|---|---|
| usbank.com/ | 1.1 s |
| www.usbank.com/ | 782 ms |
| www.usbank.com/index.html | 0.0 ms |
Time to Interactive is the amount of time it takes for the page to become fully interactive. Learn more about the Time to Interactive metric.
Performance issues directly impact user engagement and conversion rates.
The maximum potential First Input Delay that your users could experience is the duration of the longest task. Learn more about the Maximum Potential First Input Delay metric.
Performance issues directly impact user engagement and conversion rates.
Reduce unused rules from stylesheets and defer CSS not used for above-the-fold content to decrease bytes consumed by network activity. Learn how to reduce unused CSS.
Performance issues directly impact user engagement and conversion rates.
| URL | Transfer Size | Est Savings |
|---|---|---|
| /etc.clientlibs/usbank/clientlibs/clientlib-ghp/styles/gh... | 81.4 KiB | 75.1 KiB |
Reduce unused JavaScript and defer loading scripts until they are required to decrease bytes consumed by network activity. Learn how to reduce unused JavaScript.
Multi-megabyte JavaScript bundles delay every interactive feature on the page.
This is the Lighthouse audit fired when too much JS is shipped relative to what executes. The fix isn't a config flag — it requires bundle analysis (webpack-bundle-analyzer, rollup-plugin-visualizer), splitting routes into chunks, lazy-loading off-screen components, and removing unused dependencies. Fundamentally different from minification: minifying reduces byte count, this reduces what's downloaded at all.
Source: Google web.dev / Lighthouse
| URL | Transfer Size | Est Savings |
|---|---|---|
| www.googletagmanager.com/gtag/js?id=DC-8176182 | 128.7 KiB | 60.7 KiB |
| www.googletagmanager.com/gtag/js?id=AW-978114044&cx=c>m=4e64k1 | 148.4 KiB | 59.0 KiB |
| cdn.quantummetric.com/qscripts/quantum-usbank.js | 320.6 KiB | 57.3 KiB |
| www.googletagmanager.com/gtag/js?id=DC-6219543 | 129.2 KiB | 54.3 KiB |
| /etc.clientlibs/usbank/clientlibs/clientlib-ghp/scripts.m... | 53.3 KiB | 41.1 KiB |
| /x0WB8u/9H/ih/GH3O/clN_YXrZZu/ik5Lbmaaaa5umhtu7G/AHckAWsB... | 180.3 KiB | 36.4 KiB |
| connect.facebook.net/en_US/fbevents.js | 96.5 KiB | 35.3 KiB |
| www.datadoghq-browser-agent.com/us1/v6/datadog-rum.js | 57.9 KiB | 28.4 KiB |
| tags.tiqcdn.com/utag/usbank/dotcom-homepage/prod/utag.js | 83.7 KiB | 25.7 KiB |
| /dxjsmodule/CoreModule.js?Q_CLIENTVERSION=2.46.0&Q_CLIENT... | 30.9 KiB | 21.5 KiB |
| /dxjsmodule/12.1a2b7192fd54e87d3971.chunk.js?Q_CLIENTVERS... | 35.7 KiB | 21.3 KiB |
| tags.tiqcdn.com/utag/usbank/global-sync/prod/utag.sync.js | 49.6 KiB | 20.5 KiB |
Consider reducing the time spent parsing, compiling, and executing JS. You may find delivering smaller JS payloads helps with this. Learn how to reduce Javascript execution time.
Performance issues directly impact user engagement and conversion rates.
Consider reducing the time spent parsing, compiling and executing JS. You may find delivering smaller JS payloads helps with this. Learn how to minimize main-thread work
Performance issues directly impact user engagement and conversion rates.
| Category | Time Spent |
|---|---|
| Script Evaluation | 5.5 s |
| Other | 1.4 s |
| Script Parsing & Compilation | 581 ms |
| Style & Layout | 537 ms |
| Rendering | 137 ms |
| Parse HTML & CSS | 117 ms |
| Garbage Collection | 92 ms |
Many navigations are performed by going back to a previous page, or forwards again. The back/forward cache (bfcache) can speed up these return navigations. Learn more about the bfcache
Performance issues directly impact user engagement and conversion rates.
| Failure reason | Failure type |
|---|---|
| Pages with WebSocket cannot enter back/forward cache. | Pending browser support |
Set an explicit width and height on image elements to reduce layout shifts and improve CLS. Learn how to set image dimensions
Performance issues directly impact user engagement and conversion rates.
| URL | |
|---|---|
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-outdo... |
A man and a woman sitting on a couch, looking at a laptop with printed papers a… div.scb-card > div.img > picture > img.ar-3x2 | |
Children playing flag football on a turf field, with one child carrying a footb… div.scb-card > div.img > picture > img.ar-3x2 | |
Person making a payment by tapping a debit card on a payment terminal at a coun… div.scb-card > div.img > picture > img.ar-3x2 | |
Privacy options div.c-3-lg > div.primary-link > a.link > img | www.usbank.com/content/dam/usbank/en/images/icons/icon-privacy-options.svg |
U.S. Bank div.nav-utility-bar > div.nav-mobile-bar > a.homepage > img.logo | /etc.clientlibs/ecm-global/clientlibs/clientlib-resources... |
div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed |
More information about the performance of your application. These numbers don't directly affect the Performance score.
These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.
Visible text labels that do not match the accessible name can result in a confusing experience for screen reader users. Learn more about accessible names.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
Open Checking & Savings div.layered-row > div.c-3-lg > div.button-group > a.button |
See our partnership div.layered-row > div.c-3-lg > div.button-group > a.button |
Open a checking account div.textModule > div.comp-text > div.button-group > a.button |
Download the app div.textModule > div.comp-text > div.button-group > a.button |
Search locations div.component-offset-12 > div.row > div.cta > a.flex-row-start-sm |
Call 800-872-2657 div.component-offset-12 > div.row > div.cta > a.flex-row-start-sm |
Your privacy choices div.links > div.c-3-lg > div.primary-link > a.link |
Deprecated APIs will eventually be removed from the browser. Learn more about deprecated APIs.
Performance issues directly impact user engagement and conversion rates.
| Deprecation / Warning | Source |
|---|---|
| AttributionReporting |
Errors logged to the console indicate unresolved problems. They can come from network request failures and other browser concerns. Learn more about this errors in console diagnostic audit
Performance issues directly impact user engagement and conversion rates.
| Source | Description |
|---|---|
Connecting to 'https://bat.bing.net/actionp/0?ti=5697122&Ver=2&mid=e86134fb-0011-4eb5-a557-9eb9abf25a25&bo=1&evt=consent&src=enforced&cdb=AQwZ&asc=D' violates the following Content Security Policy directive: "default-src 'self' *.usbank.com 'unsafe-inline' 'unsafe-eval' blob: data: cdn.appsflyer.com cdn.pdst.fm connect.facebook.net conv-tm.everesttech.net ct.pinterest.com d.agkn.com www.datadoghq-browser-agent.com browser-intake-datadoghq.com display.powerreviews.com dsum-sec.casalemedia.com eb2.3lift.com edge.adobedc.net assetts.adobedtm.com fast.fonts.net fonts.gstatic.com google.com hb.yahoo.net ib.adnxs.com idpix.media6degrees.com jadserve.postrelease.com match.sharethrough.com mid.rkdms.com mpsnare.iesnare.com opreq.observepoint.com partners.tremorhub.com pippio.com pixel.rubiconproject.com pixel.tapad.com players.brightcove.net *.invoca.net s.pinimg.com schema.milestoneinternet.com sc-static.net simage2.pubmatic.com siteimproveanalytics.com snap.licdn.com solutions.invocacdn.com ssa.gov static.3playmedia.com sync.bfmio.com sync.taboola.com sync.teads.tv sync-stgz.ads.yieldmo.com t.co tags.tiqcdn.com usbankinteractive.postclickmarketing.com utt.impactcdn.com vjs.zencdn.net websdk.appsflyer.com www.emjcd.com www.facebook.com www.googleadservices.com www.googletagmanager.com www.mczbf.com www.usbankedge.com x.bidswitch.net *.adoberesources.net *.adsrvr.org *.ads-twitter.com *.akamaihd.net *.amazonaws.com *.appdynamics.com *.bing.com *.boltdns.net *.brightcove.com *.brightcovecdn.com *.c3tag.com *.casalemedia.com *.company-target.com *.demandbase.com *.demdex.net *.doubleclick.net *.eum-appdynamics.com *.force.com *.glance.net *.glancecdn.net *.google.co.in *.google.com *.googleapis.com *.gstatic.com *.impactradius-event.com *.jsdelivr.net *.kitewheel.com *.knotch.com *.knotch-cdn.com *.krxd.net *.leadfusion.com *.linkedin.com *.loggly.com *.marketo.net *.miaprova.com *.mktoresp.com *.mktoutil.com *.mrpdata.net *.mykukun.com *.nextdoor.com *.ojrq.net *.omtrdc.net *.onetrust.com *.powerreviews.com *.pxf.io *.qualtrics.com *.quantummetric.com *.rlcdn.com *.ru4.com *.salesforceliveagent.com *.sandbox.file.force.com *.siteimproveanalytics.io *.sjv.io *.snapchat.com *.storygize.net *.tealiumiq.com *.turn.com *.typekit.net *.us.bank-dns.com *.videoamp.com *.yahoo.com *.youtube.com *.byspotify.com *.spotify.com *.dianomi.com *.pixel.admedia.com *.schemaapp.com *.amazon-adsystem.com *.paa-reporting-advertising.amazon *.clickagy.com *.rokt.com *.rokt-api.com *.roktinternal.com *.zi-scripts.com *.zoominfo.com *.ispot.tv *.evolo.ai aa.agkn.com match.adsrvr.org wss://*.amazonaws.com wss://*.glance.net wss://mpsnare.iesnare.com". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback. The action has been blocked. | |
Loading the image 'https://bat.bing.net/action/0?ti=5697122&Ver=2&mid=e86134fb-0011-4eb5-a557-9eb9abf25a25&bo=2&pi=918639831&lg=en-US&sw=412&sh=823&sc=24&tl=Personal%20Banking,%20Credit%20Cards,%20Loans%20%26%20Investing%20%7C%20U.S.%20Bank&p=https%3A%2F%2Fwww.usbank.com%2Findex.html&r=<=1112&mtp=1&evt=pageLoad&sv=2&asc=D&cdb=AQwZ&rn=102428' violates the following Content Security Policy directive: "default-src 'self' *.usbank.com 'unsafe-inline' 'unsafe-eval' blob: data: cdn.appsflyer.com cdn.pdst.fm connect.facebook.net conv-tm.everesttech.net ct.pinterest.com d.agkn.com www.datadoghq-browser-agent.com browser-intake-datadoghq.com display.powerreviews.com dsum-sec.casalemedia.com eb2.3lift.com edge.adobedc.net assetts.adobedtm.com fast.fonts.net fonts.gstatic.com google.com hb.yahoo.net ib.adnxs.com idpix.media6degrees.com jadserve.postrelease.com match.sharethrough.com mid.rkdms.com mpsnare.iesnare.com opreq.observepoint.com partners.tremorhub.com pippio.com pixel.rubiconproject.com pixel.tapad.com players.brightcove.net *.invoca.net s.pinimg.com schema.milestoneinternet.com sc-static.net simage2.pubmatic.com siteimproveanalytics.com snap.licdn.com solutions.invocacdn.com ssa.gov static.3playmedia.com sync.bfmio.com sync.taboola.com sync.teads.tv sync-stgz.ads.yieldmo.com t.co tags.tiqcdn.com usbankinteractive.postclickmarketing.com utt.impactcdn.com vjs.zencdn.net websdk.appsflyer.com www.emjcd.com www.facebook.com www.googleadservices.com www.googletagmanager.com www.mczbf.com www.usbankedge.com x.bidswitch.net *.adoberesources.net *.adsrvr.org *.ads-twitter.com *.akamaihd.net *.amazonaws.com *.appdynamics.com *.bing.com *.boltdns.net *.brightcove.com *.brightcovecdn.com *.c3tag.com *.casalemedia.com *.company-target.com *.demandbase.com *.demdex.net *.doubleclick.net *.eum-appdynamics.com *.force.com *.glance.net *.glancecdn.net *.google.co.in *.google.com *.googleapis.com *.gstatic.com *.impactradius-event.com *.jsdelivr.net *.kitewheel.com *.knotch.com *.knotch-cdn.com *.krxd.net *.leadfusion.com *.linkedin.com *.loggly.com *.marketo.net *.miaprova.com *.mktoresp.com *.mktoutil.com *.mrpdata.net *.mykukun.com *.nextdoor.com *.ojrq.net *.omtrdc.net *.onetrust.com *.powerreviews.com *.pxf.io *.qualtrics.com *.quantummetric.com *.rlcdn.com *.ru4.com *.salesforceliveagent.com *.sandbox.file.force.com *.siteimproveanalytics.io *.sjv.io *.snapchat.com *.storygize.net *.tealiumiq.com *.turn.com *.typekit.net *.us.bank-dns.com *.videoamp.com *.yahoo.com *.youtube.com *.byspotify.com *.spotify.com *.dianomi.com *.pixel.admedia.com *.schemaapp.com *.amazon-adsystem.com *.paa-reporting-advertising.amazon *.clickagy.com *.rokt.com *.rokt-api.com *.roktinternal.com *.zi-scripts.com *.zoominfo.com *.ispot.tv *.evolo.ai aa.agkn.com match.adsrvr.org wss://*.amazonaws.com wss://*.glance.net wss://mpsnare.iesnare.com". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback. The action has been blocked. |
Issues logged to the `Issues` panel in Chrome Devtools indicate unresolved problems. They can come from network request failures, insufficient security controls, and other browser concerns. Open up the Issues panel in Chrome DevTools for more details on each issue.
Performance issues directly impact user engagement and conversion rates.
| Issue type |
|---|
| Content security policy |
Source maps translate minified code to the original source code. This helps developers debug in production. In addition, Lighthouse is able to provide further insights. Consider deploying source maps to take advantage of these benefits. Learn more about source maps.
Performance issues directly impact user engagement and conversion rates.
These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on Core Web Vitals. Learn more about Google Search Essentials.
Descriptive link text helps search engines understand your content. Learn how to make links more accessible.
Performance issues directly impact user engagement and conversion rates.
| Link destination | Link Text |
|---|---|
| www.usbank.com/vehicle-loans/auto-loans/refinance-auto-loan.html | Learn more |
Format your HTML in a way that enables crawlers to better understand your app’s content.
Industry-standard audits powered by Google Lighthouse. — Desktop
Key metrics that affect user experience. — Desktop
First Contentful Paint First Contentful Paint — how long until the browser renders the first piece of content. Under 1.8s is good.
1.58 s
Largest Contentful Paint Largest Contentful Paint — how long until the largest visible element loads. Under 2.5s is good.
3.48 s
Total Blocking Time Total Blocking Time — total time the main thread was blocked, preventing user input. Under 200ms is good.
360 ms
Cumulative Layout Shift Cumulative Layout Shift — measures visual stability. How much the page layout shifts during loading. Under 0.1 is good.
0.000
Speed Index Speed Index — how quickly content is visually displayed during load. Under 3.4s is good.
3.03 s
Time to Interactive Time to Interactive — how long until the page is fully interactive and responds to user input. Under 3.8s is good.
7.32 s
Audit breakdown by category with detailed findings.
Remove large, duplicate JavaScript modules from bundles to reduce unnecessary bytes consumed by network activity.
Performance issues directly impact user engagement and conversion rates.
Polyfills and transforms enable older browsers to use new JavaScript features. However, many aren't necessary for modern browsers. Consider modifying your JavaScript build process to not transpile Baseline features, unless you know you must support older browsers. Learn why most sites can deploy ES6+ code without transpiling
Shipping ES5 transpiled code to modern browsers wastes bytes — every user with an evergreen browser pays for compatibility you don't need.
Most users today run browsers that natively support ES6+, async/await, optional chaining, and the rest of modern JavaScript. Transpiling to ES5 'just in case' adds 20-40% to your bundle for no benefit. Configure your build to target a modern browserslist, or ship a differential bundle pair (modern + legacy) with the module/nomodule pattern.
Source: Google web.dev / Lighthouse
3rd party code can significantly impact load performance. Reduce and defer loading of 3rd party code to prioritize your page's content.
Performance issues directly impact user engagement and conversion rates.
A long cache lifetime can speed up repeat visits to your page. Learn more about caching.
Performance issues directly impact user engagement and conversion rates.
Your first network request is the most important. Reduce its latency by avoiding redirects, ensuring a fast server response, and enabling text compression.
Performance issues directly impact user engagement and conversion rates.
Consider setting font-display to swap or optional to ensure text is consistently visible. swap can be further optimized to mitigate layout shifts with font metric overrides.
Performance issues directly impact user engagement and conversion rates.
| URL | Est Savings |
|---|---|
| /content/dam/onlinebanking/common/static/fonts/U.S.BankCi... | 30 ms |
A forced reflow occurs when JavaScript queries geometric properties (such as offsetWidth) after styles have been invalidated by a change to the DOM state. This can result in poor performance. Learn more about forced reflows and possible mitigations.
Performance issues directly impact user engagement and conversion rates.
Optimize LCP by making the LCP image discoverable from the HTML immediately, and avoiding lazy-loading
Performance issues directly impact user engagement and conversion rates.
Avoid chaining critical requests by reducing the length of chains, reducing the download size of resources, or deferring the download of unnecessary resources to improve page load.
Performance issues directly impact user engagement and conversion rates.
Requests are blocking the page's initial render, which may delay LCP. Deferring or inlining can move these network requests out of the critical path.
Performance issues directly impact user engagement and conversion rates.
| URL | Transfer Size | Duration |
|---|---|---|
| /etc.clientlibs/usbank/clientlibs/clientlib-ghp/styles/gh... | 81.4 KiB | 125 ms |
| tags.tiqcdn.com/utag/usbank/global-sync/prod/utag.sync.js | 50.0 KiB | 370 ms |
| www.datadoghq-browser-agent.com/us1/v6/datadog-rum.js | 61.3 KiB | 420 ms |
| /etc.clientlibs/usbank/components/structure/ghp-page/clie... | 1.1 KiB | |
| www.usbank.com/content/usbank/LoginModuleHelpers/loginhotfixesGlobalTemp.css | 2.8 KiB |
Reducing the download time of images can improve the perceived load time of the page and LCP. Learn more about optimizing image size
Performance issues directly impact user engagement and conversion rates.
| URL | Resource Size | Est Savings | |
|---|---|---|---|
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/illustrations/illustration-... | 162.4 KiB | 103.3 KiB |
Mom and son playing with dinosaurs div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-two-p... | 53.7 KiB | 37.7 KiB |
div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed | /content/dam/usbank/en/images/photos/homepage/photo-man-u... | 63.1 KiB | 34.9 KiB |
Vikings player Justin Jefferson holding a football div.cs-2-lg > div.c-8-lg > picture.img > img.backgrounded | /content/dam/usbank/en/images/photos/homepage/photo-justi... | 42.4 KiB | 21.0 KiB |
Young man using level on wooden frame div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-young... | 33.0 KiB | 17.0 KiB |
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-outdo... | 61.2 KiB | 13.0 KiB |
These insights are also available in the Chrome DevTools Performance Panel - record a trace to view more detailed information.
Redirects introduce additional delays before the page can be loaded. Learn how to avoid page redirects.
Performance issues directly impact user engagement and conversion rates.
| URL | Time Spent |
|---|---|
| usbank.com/ | 586 ms |
| www.usbank.com/ | 252 ms |
| www.usbank.com/index.html | 0.0 ms |
Time to Interactive is the amount of time it takes for the page to become fully interactive. Learn more about the Time to Interactive metric.
Performance issues directly impact user engagement and conversion rates.
The maximum potential First Input Delay that your users could experience is the duration of the longest task. Learn more about the Maximum Potential First Input Delay metric.
Performance issues directly impact user engagement and conversion rates.
Reduce unused rules from stylesheets and defer CSS not used for above-the-fold content to decrease bytes consumed by network activity. Learn how to reduce unused CSS.
Performance issues directly impact user engagement and conversion rates.
| URL | Transfer Size | Est Savings |
|---|---|---|
| .smartassistant .sa-modal--open .usb-modal-v2--container .usb-modal-v2--header h1{display:inline-fle… } … | 99.4 KiB | 99.4 KiB |
| .aw-usb-authenticate{height:auto;clear:both;border-radius:15px;padding:25px;box-sizing:border-box; … } … | 77.0 KiB | 74.6 KiB |
| /etc.clientlibs/usbank/clientlibs/clientlib-ghp/styles/gh... | 81.4 KiB | 73.8 KiB |
| .uiContentBox{font-size:14px;font-weight:400;line-height:21px;margin-bottom:34px} … | 25.4 KiB | 23.5 KiB |
Reduce unused JavaScript and defer loading scripts until they are required to decrease bytes consumed by network activity. Learn how to reduce unused JavaScript.
Multi-megabyte JavaScript bundles delay every interactive feature on the page.
This is the Lighthouse audit fired when too much JS is shipped relative to what executes. The fix isn't a config flag — it requires bundle analysis (webpack-bundle-analyzer, rollup-plugin-visualizer), splitting routes into chunks, lazy-loading off-screen components, and removing unused dependencies. Fundamentally different from minification: minifying reduces byte count, this reduces what's downloaded at all.
Source: Google web.dev / Lighthouse
Consider reducing the time spent parsing, compiling, and executing JS. You may find delivering smaller JS payloads helps with this. Learn how to reduce Javascript execution time.
Performance issues directly impact user engagement and conversion rates.
Consider reducing the time spent parsing, compiling and executing JS. You may find delivering smaller JS payloads helps with this. Learn how to minimize main-thread work
Performance issues directly impact user engagement and conversion rates.
| Category | Time Spent |
|---|---|
| Script Evaluation | 2.0 s |
| Other | 416 ms |
| Script Parsing & Compilation | 307 ms |
| Style & Layout | 205 ms |
| Rendering | 43 ms |
| Parse HTML & CSS | 26 ms |
| Garbage Collection | 22 ms |
Many navigations are performed by going back to a previous page, or forwards again. The back/forward cache (bfcache) can speed up these return navigations. Learn more about the bfcache
Performance issues directly impact user engagement and conversion rates.
| Failure reason | Failure type |
|---|---|
| The page has an unload handler in the main frame. | Actionable |
Large network payloads cost users real money and are highly correlated with long load times. Learn how to reduce payload sizes.
Performance issues directly impact user engagement and conversion rates.
Set an explicit width and height on image elements to reduce layout shifts and improve CLS. Learn how to set image dimensions
Performance issues directly impact user engagement and conversion rates.
| URL | |
|---|---|
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/illustrations/illustration-... |
div.aem-Grid > div.imageModule > div.comp-img > img.of-cover div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-outdo... |
div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed div.aem-Grid > div.cardModule > div.m-card-mos > img.full-bleed | /content/dam/usbank/en/images/photos/homepage/photo-man-u... |
Mom and son playing with dinosaurs div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-two-p... |
Young man using level on wooden frame div.aem-Grid > div.imageModule > div.comp-img > img.of-cover | /content/dam/usbank/en/images/photos/homepage/photo-young... |
A man and a woman sitting on a couch, looking at a laptop with printed papers a… div.scb-card > div.img > picture > img.ar-3x2 | |
Children playing flag football on a turf field, with one child carrying a footb… div.scb-card > div.img > picture > img.ar-3x2 | |
Person making a payment by tapping a debit card on a payment terminal at a coun… div.scb-card > div.img > picture > img.ar-3x2 | |
Privacy options div.c-3-lg > div.primary-link > a.link > img | www.usbank.com/content/dam/usbank/en/images/icons/icon-privacy-options.svg |
U.S. Bank ul.menu-list > li.menu-item > a.homepage > img.logo | /etc.clientlibs/ecm-global/clientlibs/clientlib-resources... |
More information about the performance of your application. These numbers don't directly affect the Performance score.
These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.
Visible text labels that do not match the accessible name can result in a confusing experience for screen reader users. Learn more about accessible names.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
Open Checking & Savings div.layered-row > div.c-3-lg > div.button-group > a.button |
See our partnership div.layered-row > div.c-3-lg > div.button-group > a.button |
Open a checking account div.textModule > div.comp-text > div.button-group > a.button |
Download the app div.textModule > div.comp-text > div.button-group > a.button |
Search locations div.component-offset-12 > div.row > div.cta > a.flex-row-start-sm |
Call 800-872-2657 div.component-offset-12 > div.row > div.cta > a.flex-row-start-sm |
Your privacy choices div.links > div.c-3-lg > div.primary-link > a.link |
Deprecated APIs will eventually be removed from the browser. Learn more about deprecated APIs.
Performance issues directly impact user engagement and conversion rates.
| Deprecation / Warning | Source |
|---|---|
| Unload event listeners are deprecated and will be removed. | onlinebanking.usbank.com/auth/login/rwc/main-bundle.js line 1, col 9925 |
| AttributionReporting |
Errors logged to the console indicate unresolved problems. They can come from network request failures and other browser concerns. Learn more about this errors in console diagnostic audit
Performance issues directly impact user engagement and conversion rates.
| Source | Description |
|---|---|
Access to fetch at 'https://content.usbank.com/dam/olb-smart-assistant/en-us/com.model.json' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Bold.woff' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Bold.woff2' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Book.woff' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Book.woff2' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Light.woff2' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Medium.woff' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Medium.woff2' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Regular.woff' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Access to font at 'https://content.usbank.com/content/dam/onlinebanking/common/static/fonts/U.S.BankCircularWeb-Regular.woff2' from origin 'https://www.usbank.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. | |
Connecting to 'https://bat.bing.net/actionp/0?ti=5697122&Ver=2&mid=0cce7e06-f597-451b-b590-b68665ac1cd2&bo=1&evt=consent&src=enforced&cdb=AQwZ&asc=D' violates the following Content Security Policy directive: "default-src 'self' *.usbank.com 'unsafe-inline' 'unsafe-eval' blob: data: cdn.appsflyer.com cdn.pdst.fm connect.facebook.net conv-tm.everesttech.net ct.pinterest.com d.agkn.com www.datadoghq-browser-agent.com browser-intake-datadoghq.com display.powerreviews.com dsum-sec.casalemedia.com eb2.3lift.com edge.adobedc.net assetts.adobedtm.com fast.fonts.net fonts.gstatic.com google.com hb.yahoo.net ib.adnxs.com idpix.media6degrees.com jadserve.postrelease.com match.sharethrough.com mid.rkdms.com mpsnare.iesnare.com opreq.observepoint.com partners.tremorhub.com pippio.com pixel.rubiconproject.com pixel.tapad.com players.brightcove.net *.invoca.net s.pinimg.com schema.milestoneinternet.com sc-static.net simage2.pubmatic.com siteimproveanalytics.com snap.licdn.com solutions.invocacdn.com ssa.gov static.3playmedia.com sync.bfmio.com sync.taboola.com sync.teads.tv sync-stgz.ads.yieldmo.com t.co tags.tiqcdn.com usbankinteractive.postclickmarketing.com utt.impactcdn.com vjs.zencdn.net websdk.appsflyer.com www.emjcd.com www.facebook.com www.googleadservices.com www.googletagmanager.com www.mczbf.com www.usbankedge.com x.bidswitch.net *.adoberesources.net *.adsrvr.org *.ads-twitter.com *.akamaihd.net *.amazonaws.com *.appdynamics.com *.bing.com *.boltdns.net *.brightcove.com *.brightcovecdn.com *.c3tag.com *.casalemedia.com *.company-target.com *.demandbase.com *.demdex.net *.doubleclick.net *.eum-appdynamics.com *.force.com *.glance.net *.glancecdn.net *.google.co.in *.google.com *.googleapis.com *.gstatic.com *.impactradius-event.com *.jsdelivr.net *.kitewheel.com *.knotch.com *.knotch-cdn.com *.krxd.net *.leadfusion.com *.linkedin.com *.loggly.com *.marketo.net *.miaprova.com *.mktoresp.com *.mktoutil.com *.mrpdata.net *.mykukun.com *.nextdoor.com *.ojrq.net *.omtrdc.net *.onetrust.com *.powerreviews.com *.pxf.io *.qualtrics.com *.quantummetric.com *.rlcdn.com *.ru4.com *.salesforceliveagent.com *.sandbox.file.force.com *.siteimproveanalytics.io *.sjv.io *.snapchat.com *.storygize.net *.tealiumiq.com *.turn.com *.typekit.net *.us.bank-dns.com *.videoamp.com *.yahoo.com *.youtube.com *.byspotify.com *.spotify.com *.dianomi.com *.pixel.admedia.com *.schemaapp.com *.amazon-adsystem.com *.paa-reporting-advertising.amazon *.clickagy.com *.rokt.com *.rokt-api.com *.roktinternal.com *.zi-scripts.com *.zoominfo.com *.ispot.tv *.evolo.ai aa.agkn.com match.adsrvr.org wss://*.amazonaws.com wss://*.glance.net wss://mpsnare.iesnare.com". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback. The action has been blocked. | |
Datadog Browser SDK: DD_RUM is already initialized. | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Failed to load resource: net::ERR_FAILED | |
Loading the image 'https://bat.bing.net/action/0?ti=5697122&Ver=2&mid=0cce7e06-f597-451b-b590-b68665ac1cd2&bo=2&pi=918639831&lg=en-US&sw=800&sh=600&sc=24&tl=Personal%20Banking,%20Credit%20Cards,%20Loans%20%26%20Investing%20%7C%20U.S.%20Bank&p=https%3A%2F%2Fwww.usbank.com%2Findex.html&r=<=1063&evt=pageLoad&sv=2&asc=D&cdb=AQwZ&rn=501500' violates the following Content Security Policy directive: "default-src 'self' *.usbank.com 'unsafe-inline' 'unsafe-eval' blob: data: cdn.appsflyer.com cdn.pdst.fm connect.facebook.net conv-tm.everesttech.net ct.pinterest.com d.agkn.com www.datadoghq-browser-agent.com browser-intake-datadoghq.com display.powerreviews.com dsum-sec.casalemedia.com eb2.3lift.com edge.adobedc.net assetts.adobedtm.com fast.fonts.net fonts.gstatic.com google.com hb.yahoo.net ib.adnxs.com idpix.media6degrees.com jadserve.postrelease.com match.sharethrough.com mid.rkdms.com mpsnare.iesnare.com opreq.observepoint.com partners.tremorhub.com pippio.com pixel.rubiconproject.com pixel.tapad.com players.brightcove.net *.invoca.net s.pinimg.com schema.milestoneinternet.com sc-static.net simage2.pubmatic.com siteimproveanalytics.com snap.licdn.com solutions.invocacdn.com ssa.gov static.3playmedia.com sync.bfmio.com sync.taboola.com sync.teads.tv sync-stgz.ads.yieldmo.com t.co tags.tiqcdn.com usbankinteractive.postclickmarketing.com utt.impactcdn.com vjs.zencdn.net websdk.appsflyer.com www.emjcd.com www.facebook.com www.googleadservices.com www.googletagmanager.com www.mczbf.com www.usbankedge.com x.bidswitch.net *.adoberesources.net *.adsrvr.org *.ads-twitter.com *.akamaihd.net *.amazonaws.com *.appdynamics.com *.bing.com *.boltdns.net *.brightcove.com *.brightcovecdn.com *.c3tag.com *.casalemedia.com *.company-target.com *.demandbase.com *.demdex.net *.doubleclick.net *.eum-appdynamics.com *.force.com *.glance.net *.glancecdn.net *.google.co.in *.google.com *.googleapis.com *.gstatic.com *.impactradius-event.com *.jsdelivr.net *.kitewheel.com *.knotch.com *.knotch-cdn.com *.krxd.net *.leadfusion.com *.linkedin.com *.loggly.com *.marketo.net *.miaprova.com *.mktoresp.com *.mktoutil.com *.mrpdata.net *.mykukun.com *.nextdoor.com *.ojrq.net *.omtrdc.net *.onetrust.com *.powerreviews.com *.pxf.io *.qualtrics.com *.quantummetric.com *.rlcdn.com *.ru4.com *.salesforceliveagent.com *.sandbox.file.force.com *.siteimproveanalytics.io *.sjv.io *.snapchat.com *.storygize.net *.tealiumiq.com *.turn.com *.typekit.net *.us.bank-dns.com *.videoamp.com *.yahoo.com *.youtube.com *.byspotify.com *.spotify.com *.dianomi.com *.pixel.admedia.com *.schemaapp.com *.amazon-adsystem.com *.paa-reporting-advertising.amazon *.clickagy.com *.rokt.com *.rokt-api.com *.roktinternal.com *.zi-scripts.com *.zoominfo.com *.ispot.tv *.evolo.ai aa.agkn.com match.adsrvr.org wss://*.amazonaws.com wss://*.glance.net wss://mpsnare.iesnare.com". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback. The action has been blocked. |
Issues logged to the `Issues` panel in Chrome Devtools indicate unresolved problems. They can come from network request failures, insufficient security controls, and other browser concerns. Open up the Issues panel in Chrome DevTools for more details on each issue.
Performance issues directly impact user engagement and conversion rates.
| Issue type |
|---|
| Content security policy |
Source maps translate minified code to the original source code. This helps developers debug in production. In addition, Lighthouse is able to provide further insights. Consider deploying source maps to take advantage of these benefits. Learn more about source maps.
Performance issues directly impact user engagement and conversion rates.
These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on Core Web Vitals. Learn more about Google Search Essentials.
Descriptive link text helps search engines understand your content. Learn how to make links more accessible.
Performance issues directly impact user engagement and conversion rates.
| Link destination | Link Text |
|---|---|
| www.usbank.com/vehicle-loans/auto-loans/refinance-auto-loan.html | Learn more |
Format your HTML in a way that enables crawlers to better understand your app’s content.
Send Feedback