Changes
| Category | Previous | Current | Change |
|---|---|---|---|
| Composite | B (81) | B (86) | +5.000 |
| Performance | A (94) | A (93) | -1.000 |
| Security | C (71) | B (82) | +11.000 |
| Accessibility | C (74) | C (78) | +4.000 |
| SEO | C (77) | A (96) | +19.000 |
| Infrastructure | B (88) | A (93) | +5.000 |
| Compliance | D (69) | D (69) | — |
| Content | B (85) | B (89) | +4.000 |
| Sustainability | A (96) | A (95) | -1.000 |
| Metric | Previous | Current | Change |
|---|---|---|---|
| Performance | 7600 | 8000 | +400 |
| Accessibility | 9500 | 9600 | +100 |
| Best Practices | 10000 | 10000 | — |
| SEO | 4500 | 9200 | +4700 |
| PWA | 0 | 0 | — |
| Desktop Performance | 9900 | 9800 | -100 |
| Desktop Accessibility | 9500 | 9600 | +100 |
| Desktop Best Practices | 10000 | 10000 | — |
| Desktop SEO | 4500 | 9200 | +4700 |
| FCP | 1.74 s | 1.31 s | -433 ms |
| LCP | 5.15 s | 5.11 s | — |
| TBT | 8 ms | 27 ms | +18 ms |
| CLS | 0.000 | 0.001 | +0.001 |
| Desktop FCP | 316 ms | 412 ms | +96 ms |
| Desktop LCP | 957 ms | 985 ms | +28 ms |
| Desktop TBT | 0 ms | 0 ms | — |
| Desktop CLS | 0.014 | 0.013 | -0.000 |
| TTFB † | 223 ms | 231 ms | +8 ms |
| DNS † | 9 ms | 10 ms | +0 ms |
| TLS † | 39 ms | 32 ms | -7 ms |
| Connect † | 1 ms | 1 ms | +0 ms |
| Total † | 223 ms | 238 ms | +15 ms |
† Timing metrics may vary by worker location and do not necessarily indicate site changes.
cross-origin-opener-policy same-origincross-origin-embedder-policy credentiallessserver Fly/421c5554c (2026-05-06) → Fly/2547b4920 (2026-05-07)strict-transport-security max-age=31536000 → max-age=31536000; includeSubDomainscontent-security-policy default-src 'self'; img-src 'self' data: https:; style-src 'self' 'unsafe-inl... → default-src 'self'; img-src 'self' data: https:; style-src 'self' 'unsafe-inl...set-cookie _potential_spouse_key=SFMyNTY.g3QAAAABbQAAAAtfY3NyZl90b2tlbm0AAAAYSU1OSmhXbFJ... → _potential_spouse_key=SFMyNTY.g3QAAAABbQAAAAtfY3NyZl90b2tlbm0AAAAYZWY1Sk40MGg...fly-request-id 01KR1M61FJ38P77MQW1FBZ7RG1-ewr → 01KR42HJNVZS2238NRAYDZ2FD6-ewr7 headers unchanged
8 technologies unchanged
Looking ahead
+9 ptsEstimate — actual results may vary (18 issues to fix)
Website improvement report — Potentialspouse
May 7, 2026 → May 8, 2026
15
Resolved
4
New issues
14
Still remaining
Financial summary
Investment delivered
€3,280 in development time
Investment remaining
€1,750 to complete the remaining items
Ongoing risk
€10,041,667/month in ongoing exposure
Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.
Performance by category
| Metric | Before | After | Change |
|---|---|---|---|
| Overall score | 81 (B) | 86 (B) | +5 |
| Performance | 94 (A) | 93 (A) | -1 |
| Security | 71 (C) | 82 (B) | +11 |
| Accessibility | 74 (C) | 78 (C) | +4 |
| SEO | 77 (C) | 96 (A) | +19 |
| Infrastructure | 88 (B) | 93 (A) | +5 |
| Compliance | 69 (D) | 69 (D) | 0 |
| Content | 85 (B) | 89 (B) | +4 |
| Sustainability | 96 (A) | 95 (A) | -1 |
Resolved (15)
Thin content — only 109 words (SEO)
→ Better search engine visibility
'unsafe-eval' found in script source (Security)
→ Reduced attack surface for visitors
robots.txt blocks all crawlers (Infrastructure)
→ More reliable delivery
HSTS is missing includeSubDomains (Security)
→ Reduced attack surface for visitors
Cross-Origin-Embedder-Policy header is missing (Security)
→ Reduced attack surface for visitors
No meta description tag found (SEO)
→ Better search engine visibility
Cross-Origin-Opener-Policy header is missing (Security)
→ Reduced attack surface for visitors
'unsafe-inline' found in script source (Security)
→ Reduced attack surface for visitors
https://potentialspouse.com/assets/js/app-d4229006...: 439ms CPU time (Performance)
→ Page loads faster for users
https://potentialspouse.com/: 255ms CPU time (Performance)
→ Page loads faster for users
base-uri directive is missing (Security)
→ Reduced attack surface for visitors
https://potentialspouse.com/assets/js/app-d4229006...: 26 KB unused (59%) (Performance)
→ Page loads faster for users
No canonical tag found (SEO)
→ Better search engine visibility
Page has 109 words — thin content (SEO)
→ Better search engine visibility
No SPF record found (Security)
→ Reduced attack surface for visitors
Recommended next steps (18)
- Sprint 2
1 non-essential cookie(s) set without consent banner (Compliance)
- Sprint 1
https://potentialspouse.com/assets/js/app-69126ab2...: 491ms CPU time (Performance)
- Sprint 1
1 of 2 <nav> elements are unlabeled (Accessibility)
- Sprint 1
https://potentialspouse.com/: 514ms CPU time (Performance)
- Sprint 3
https://potentialspouse.com/assets/js/app-69126ab2...: 26 KB unused (59%) (Performance)
- Sprint 2
GDPR Article 13 disclosure coverage: 0 / 8 categories (Compliance)
- Sprint 1
X-Frame-Options header is missing (Security)
- Sprint 1
form-action directive is missing (Security)
- Sprint 2
No DMARC record found (Security)
- Sprint 1
Skip navigation link is missing (WCAG 2.4.1) (Accessibility)
- Sprint 2
1 link(s) with generic text (Accessibility)
- Sprint 1
No favicon.ico at site root (Accessibility)
- Sprint 1
Registrar lock is NOT enabled (Infrastructure)
- Sprint 1
No accessibility statement detected (Compliance)
- Sprint 1
Permissions-Policy header is missing (Security)
…and 3 more recommended item(s)