Skip to content
Audit Complete

Results for https://greenprophecy.com

Visit site
United States United States · Santa Clara Completed: Apr 30, 2026 10:16 UTC
Share card preview
Share on X Share on LinkedIn Share on Reddit Share on Hacker News Share via Email Download share image Embed Badge
Download Markdown Report

Three-week fix plan

2 sprints · 4h total → projected C (75)

Sprint 1: Quick Wins

+12

Highest ROI — low effort, high impact

4 findings 2h → C (73)
  • · Content-Security-Policy header is missing
  • · HSTS header is missing
  • · No Content-Security-Policy header found

+1 more in plan export

Sprint 2: Core Fixes

+2

Medium effort, high structural impact

1 findings 2h → C (75)
  • · No favicon or icon links detected
AI remediation plan Ask AI about this audit
Focus mode
Focus mode: Privacy
Clear ×
D61
Fix top 3 → C (71, +10)

Site Health

Score: 61 / 100

Based on 4 categories, 27 sections

Several missing protections leave your users and data exposed.

Major barriers for users with disabilities — up to 15% of your audience.

Solid infrastructure — fast server responses across the board.

Several regulatory requirements are not yet met.

How is this calculated?

The overall score is a weighted average of individual category scores. Categories with more impact on user experience and security carry more weight.

Security 25%Accessibility 15%Infrastructure 10%Compliance 8%

Weights reflect general web best practices. Individual needs may differ.

How the composite score is calculated

How you compare

WordPress · 716 peers
You 61
·
Avg 74
-13 below average
0 50 100
Accessibility P1Compliance P1Security P74Infrastructure P47

Top 10% of WordPress sites score 70+ on Accessibility; you're at 29 — closing this gap is the highest-leverage improvement.

See full WordPress benchmark →
MySQL · 481 peers
You 61
·
Avg 74
-13 below average
0 50 100
Accessibility P1Compliance P1Security P77Infrastructure P45

Top 10% of MySQL sites score 70+ on Accessibility; you're at 29 — closing this gap is the highest-leverage improvement.

See full MySQL benchmark →

Top Priorities (5)

Critical: 1

Content-Security-Policy header is missing

Security gaps expose your site and users to attacks, eroding trust.

Security › Security Headers· 30m · €45· +4 pts
Critical: 2

HSTS header is missing

Security gaps expose your site and users to attacks, eroding trust.

Security › Security Headers· 30m · €45· +4 pts
Critical: 3

No Content-Security-Policy header found

Security gaps expose your site and users to attacks, eroding trust.

Security › Content Security Policy· 30m · €45· +4 pts
Critical: 4

No favicon or icon links detected

Accessibility issues exclude users with disabilities — up to 15% of your potential audience.

Accessibility › Favicon & Branding· 1h 30m · €135· +3 pts
Warning: 5

Cross-Origin-Embedder-Policy header is missing

Security gaps expose your site and users to attacks, eroding trust.

Security › Security Headers· 30m · €45· +2 pts
View fix priority matrix

Fix Priority Matrix

5 findings

Quick Wins

4

High impact, low effort — start here.

Strategic

1

High impact, requires investment.

Easy Improvements

0

Small gains, minimal effort.

Nothing in this quadrant — good news.

Deprioritize

0

Low impact, high effort — do last.

Nothing in this quadrant — good news.

← Low effort High effort →
BeaverCheck badge
Embed this badge
[![BeaverCheck](https://beavercheck.com/badge?url=https%3A%2F%2Fgreenprophecy.com)](https://beavercheck.com/results/afe785f1-44da-4e31-abe5-988dd652b993)
<a href="https://beavercheck.com/results/afe785f1-44da-4e31-abe5-988dd652b993"><img src="https://beavercheck.com/badge?url=https%3A%2F%2Fgreenprophecy.com" alt="BeaverCheck Score"></a>
https://beavercheck.com/badge?url=https%3A%2F%2Fgreenprophecy.com

This badge auto-updates with your latest scan result.

match(es)
·

What fixing these means

Your site has several issues that may be affecting user experience and business outcomes. Accessibility issues exclude users who rely on assistive technology — an estimated 15% of your potential audience. Addressing the critical issues below would have the most immediate impact on your user trust.

4 security gaps detected — browsers may warn visitors about your site.
1 accessibility issue excludes users who rely on assistive technology.

Return on Investment

€315 investment → €4,758/month returns + EUR 20,000,000 risk avoided

Payback period: < 1 month First-year ROI: +18027%
Investment

€315

4h · 5 findings

Monthly returns

€4,758 /mo

~€57,101 / year

Regulatory risk avoided

EUR 20,000,000

if kept compliant

Payback period

0 12mo 24mo

Or — fix only the top 3 findings

€135< 1 month payback · +42197% first-year ROI

Optimistic scenario assuming the top 3 capture most of the upside. Real-world recovery typically falls between this projection and the full-fix ROI above.

€180 — in quick wins — start here for the fastest payback

Figures combine localized regulatory fine ceilings, search/conversion value priced against local CPC, and bandwidth waste estimates. Results depend on implementation quality and audience composition. Not legal or financial advice.

Full methodology & sourcesCompare with peers ↓

Conversion Barriers

1 critical 2 warning

3 barrier(s) likely increasing bounce by ~22%.

Trust (2)

No HSTS header

+1% bounce

Returning visitors are briefly exposed to downgrade attacks on first request

Fix: Set Strict-Transport-Security: max-age=31536000; includeSubDomains

No Content-Security-Policy header

+1% bounce

Higher XSS blast radius — one compromised script can exfiltrate the checkout form

Fix: Ship a reporting-only CSP first, then enforce once violations are clean

Usability (1)

No viewport meta tag

+15% bounce

Mobile browsers render at desktop width and shrink — text unreadable, tap targets miniature

Fix: Add <meta name="viewport" content="width=device-width, initial-scale=1">

Preliminary CRO audit — each barrier links to the tab with detailed analysis.

Estimated Remediation Cost

€315

3.5 developer hours at €90/hr

Based on Germany rates (€90/hr)

Quick wins
€180 4 fixes in ~120 minutes

Start here for the best return on investment

Cost by category

Cost by effort level

Adjust assumptions

Team composition

Multiplier applied to dev hours to reflect QA, design, and PM overhead. Use Dev only for solo work; Full team for projects with formal review processes.

/hr

Rates reflect fully-loaded developer cost including overhead

How developer rates are sourcedCompare with peers ↑

What Inaction Is Costing You

€1,671,425 / month at risk

~€20,057,101 / year if left unfixed

Default is 10,000. Use your own number for accurate $-figures.

Compliance Risk

€20,000,000

DSGVO
  • No privacy policy link detected
    DSGVO: EUR 10,000 – EUR 20,000,000

Bounce-Rate Cost

€4,758 /mo

+21.6pp bounce · ~2,163 lost visitors/mo

CPC: EUR 2.20

Compliance figures represent the statutory maximum fine for the most severe triggered category, capped per regulation — not the sum of per-finding penalties. Based on published regulatory fine ranges. This is not legal advice.

Compliance methodology · SEO assumptions · Bandwidth model ·Compare with peers ↑

Was this report useful?

Thanks for your feedback!

Global Performance 7/7 locations
ES Madrid
Full audit
3143ms
DNS 45ms · TLS 1613ms
NL Amsterdam
1706ms
DNS 29ms · TLS 17ms
UN New York
1201ms
DNS 217ms · TLS 94ms
US Santa Clara
2524ms
DNS 350ms · TLS 164ms
SG Singapore
1539ms
DNS 344ms · TLS 163ms
ES Madrid
1069ms
DNS 43ms · TLS 85ms
BR Sao Paulo
2776ms
DNS 350ms · TLS 207ms
CDN: No CDN · Avg TTFB: 1994ms · Cache: No cache headers

Compare with a competitor

Stack yourself against any competitor — score, Core Web Vitals, and the financial gap.

We'll use a cached audit if available, or offer to scan.

Checking for existing audit...

Lighthouse Scores

Industry-standard audits powered by Google Lighthouse.

Core Web Vitals

Key metrics that affect user experience.

Desktop audit not available for this result.

Send Feedback