Accessibility
· 13 checks — Landmarks, headings, alt text, forms, and link quality rolled into one auditable list.FLink & Button QualityAction6 issue(s) across 185 links and 7 buttonsFIX
| Element | Text | Issue | Suggested Fix |
|---|---|---|---|
| # | (empty) | empty | Add link text or aria-label |
| # | (empty) | empty | Add link text or aria-label |
| https://owasporg.atlassian.net/servicede… | Start a Local Chapter... | new tab | Add '(opens in new tab)' to text |
| https://owasp.glueup.com/event/owasp-glo… | OWASP Global AppSec EU 2026 | new tab | Add '(opens in new tab)' to text |
| https://owasp.glueup.com/event/owasp-202… | OWASP Global AppSec USA 2026 | new tab | Add '(opens in new tab)' to text |
| https://snowfroc.com/ | OWASP SnowFROC 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecil.org/ | OWASP AppSec Israel 2026 | new tab | Add '(opens in new tab)' to text |
| https://owasp.org/www-chapter-italy/even… | OWASP Italy Day 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecdays.pt/ | OWASP AppSec Days Portugal 202… | new tab | Add '(opens in new tab)' to text |
| https://god.owasp.de/2026/ | OWASP German OWASP Day 2026 | new tab | Add '(opens in new tab)' to text |
| https://www.owaspappsecdays.fr/2026/inde… | OWASP AppSec Days France 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecil.org/ | OWASP AppSec Israel 2026 | new tab | Add '(opens in new tab)' to text |
| https://lascon.org/ | OWASP LASCON 2026 | new tab | Add '(opens in new tab)' to text |
| https://india.appsecdays.org/ | OWASP AppSec Days India 2026 | new tab | Add '(opens in new tab)' to text |
| https://www.youtube.com/user/OWASPGLOBAL… | Video | new tab | Add '(opens in new tab)' to text |
| https://owasp.org/ | go to homepage | img no alt | Add alt attribute to the image |
| https://owasporg.atlassian.net/servicede… | Start a Local Chapter... | new tab | Add '(opens in new tab)' to text |
| https://owasp.glueup.com/event/owasp-glo… | OWASP Global AppSec EU 2026 | new tab | Add '(opens in new tab)' to text |
| https://owasp.glueup.com/event/owasp-202… | OWASP Global AppSec USA 2026 | new tab | Add '(opens in new tab)' to text |
| https://snowfroc.com/ | OWASP SnowFROC 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecil.org/ | OWASP AppSec Israel 2026 | new tab | Add '(opens in new tab)' to text |
| https://owasp.org/www-chapter-italy/even… | OWASP Italy Day 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecdays.pt/ | OWASP AppSec Days Portugal 202… | new tab | Add '(opens in new tab)' to text |
| https://god.owasp.de/2026/ | OWASP German OWASP Day 2026 | new tab | Add '(opens in new tab)' to text |
| https://www.owaspappsecdays.fr/2026/inde… | OWASP AppSec Days France 2026 | new tab | Add '(opens in new tab)' to text |
| https://appsecil.org/ | OWASP AppSec Israel 2026 | new tab | Add '(opens in new tab)' to text |
| https://lascon.org/ | OWASP LASCON 2026 | new tab | Add '(opens in new tab)' to text |
| https://india.appsecdays.org/ | OWASP AppSec Days India 2026 | new tab | Add '(opens in new tab)' to text |
| https://www.youtube.com/user/OWASPGLOBAL… | Video | new tab | Add '(opens in new tab)' to text |
| # | (empty) | empty | Add link text or aria-label |
| # | (empty) | empty | Add link text or aria-label |
| https://owasp.glueup.com/event/owasp-glo… | OWASP Global AppSec EU 2026 - … | new tab | Add '(opens in new tab)' to text |
| https://owasp.glueup.com/event/owasp-202… | OWASP Global AppSec USA 2026 -… | new tab | Add '(opens in new tab)' to text |
| OWASP Global AppSec EU 2027 - … | new tab | Add '(opens in new tab)' to text | |
| OWASP Global AppSec USA 2027 -… | new tab | Add '(opens in new tab)' to text | |
| https://automattic.com/ | image | new tab | Add '(opens in new tab)' to text |
| https://equixly.com | image | new tab | Add '(opens in new tab)' to text |
| https://www.securecodewarrior.com/ | image | new tab | Add '(opens in new tab)' to text |
| http://trust.adobe.com | image | new tab | Add '(opens in new tab)' to text |
| http://corgea.com | image | new tab | Add '(opens in new tab)' to text |
| http://www.zinad.net | image | new tab | Add '(opens in new tab)' to text |
| https://infosecmap.com | image | new tab | Add '(opens in new tab)' to text |
| https://www.tenable.com | image | new tab | Add '(opens in new tab)' to text |
| http://promon.co | image | new tab | Add '(opens in new tab)' to text |
| https://www.skudonet.com | image | new tab | Add '(opens in new tab)' to text |
| https://github.com/OWASP/ | github organization | new tab | Add '(opens in new tab)' to text |
| https://owasp.org/slack/invite | slack group | new tab | Add '(opens in new tab)' to text |
| https://www.facebook.com/OWASPFoundation | facebook group | new tab | Add '(opens in new tab)' to text |
| https://infosec.exchange/@owasp | mastodon account | new tab | Add '(opens in new tab)' to text |
| https://twitter.com/owasp | twitter account | new tab | Add '(opens in new tab)' to text |
| https://www.linkedin.com/company/owasp/ | linkedin account | new tab | Add '(opens in new tab)' to text |
| https://www.youtube.com/user/OWASPGLOBAL | youtube account | new tab | Add '(opens in new tab)' to text |
| <button> | (empty) | empty | Add button text or aria-label |
| <button> | (empty) | empty | Add button text or aria-label |
Links without text are announced as raw URLs by screen readers.
#; #; #; #
Links with no accessible text (empty <a></a>, image-only no alt, icon-only no aria-label) are unidentifiable to screen readers.
Source: WCAG 2.1 SC 2.4.4
Image-only links need alt text on the image (or aria-label on the link) so screen readers can announce them.
a[href="https://owasp.org/"]
Image-only links with no alt are unidentifiable to screen-reader users — link's destination is invisible.
Source: WCAG 2.1 SC 2.4.4
Add '(opens in new tab)' to link text or aria-label.
https://owasporg.atlassian.net/servicedesk/customer/portal/8/group/20/create/…; https://owasp.glueup.com/event/owasp-global-appsec-eu-2026-vienna-austria-162…; https://owasp.glueup.com/event/owasp-2026-global-appsec-usa-san-francisco-ca-…; https://snowfroc.com/; https://appsecil.org/; https://owasp.org/www-chapter-italy/events/OWASPItalyDay2026-06-18; https://appsecdays.pt/; https://god.owasp.de/2026/; https://www.owaspappsecdays.fr/2026/index.html; https://appsecil.org/ (+37 more)
Links with target="_blank" without rel="noopener" leak the originating page's window context — security and UX issue.
Learn more ▾ ▴
Without rel="noopener", the new tab can navigate the original tab via window.opener (tab-nabbing attack). Modern browsers default to noopener for target=_blank but only since recent versions. Always set rel="noopener noreferrer" explicitly.
Source: MDN target / OWASP
Icon-only buttons need an aria-label so screen readers can announce them.
button#search-button; button#search-button
Buttons with no accessible text (icon-only, no aria-label) can't be activated by voice control or understood by screen readers.
Source: WCAG 2.1 SC 4.1.2
FFavicon & BrandingAction1 icon(s) detectedFIX
DWeb ManifestActionNot foundFIX
No web manifest found.
DDark Mode SupportActionNo dark mode signalsFIX
Detection limited to meta tags and inline styles.
DPrint StylesheetActionNo print stylesFIX
BLandmark Structure8 landmarksREVIEW
Multiple navigations need aria-label to distinguish them for screen readers.
Some <nav> elements lack aria-label — screen-reader users hear 'navigation' multiple times with no way to distinguish them.
Learn more ▾ ▴
When a page has multiple <nav> regions (primary, footer, breadcrumb), each needs aria-label or aria-labelledby. AT users navigate by landmark; identical 'navigation' announcements force them to enter each one to discover purpose.
Source: WAI-ARIA Authoring Practices
Add a skip link as the first focusable element so keyboard users can bypass repeated navigation.
Without a skip-nav link, keyboard users tab through every nav item before reaching content — every page, every visit.
Learn more ▾ ▴
WCAG 2.4.1 (Bypass Blocks) requires a mechanism to skip past repeated content. The standard implementation is a 'Skip to main content' link that's the first focusable element, visually hidden until focused. Three lines of HTML + four of CSS.
Source: WCAG 2.1 SC 2.4.1
BForm Accessibility2 of 3 controls have issuesREVIEW
| Control | Type | Label | Method |
|---|---|---|---|
| #searchString | search | search input | aria-label |
| #searchString | search | (Search OWASP.org) | placeholder only |
| #searchString | search | (Search OWASP.org) | placeholder only |
Placeholder text disappears on focus and is not a reliable label.
<input type="search" name="searchString" id="searchString">; <input type="search" name="searchString" id="searchString">
Placeholder-only labels disappear when the user starts typing — they must remember what the field was for.
Learn more ▾ ▴
Placeholders are NOT labels. They vanish on input, fail color contrast checks (most are gray), and don't satisfy WCAG SC 3.3.2. Always use a real <label> alongside (or aria-labelledby).
Source: WCAG 2.1 SC 3.3.2 / Nielsen Norman
B404 Error PageHTTP 404, custom pageREVIEW
CColor Contrast (Screenshot)Action20 text elements analyzed, 14 fail WCAG AAREVIEW
Analyzes text contrast against the actual rendered page, including background images, gradients, and overlays that CSS-based tools cannot detect.
Show all checked elements (20)
| Element | Ratio | Required | FG | BG | Result |
|---|---|---|---|---|---|
| h1 Explore the world | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h1 of cyber security | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h2 Are you an OWASP Mem… | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h2 7ASecurity Platinum … | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h2 It’s our 25th Anni… | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h2 Spotlight: Automatti… | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h2 Corporate Supporters | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h3 Upcoming at OWASP | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h3 Recent OWASP News & … | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| h3 Upcoming Conferences | 2.12:1 | 3.0:1 | #000000 | #434343 | Fail |
| title OWASP Foundation, th… | 2.08:1 | 4.5:1 | #000000 | #233E81 | Fail |
| p Please support the O… | 2.08:1 | 4.5:1 | #000000 | #233E81 | Fail |
| a Donate Now! | 2.08:1 | 4.5:1 | #000000 | #233E81 | Fail |
| button PROJECTS | 2.08:1 | 4.5:1 | #000000 | #233E81 | Fail |
| a Browse All Projects.… | 5.38:1 | 4.5:1 | #000000 | #6982AB | Pass |
| a Contribute to projec… | 9.29:1 | 4.5:1 | #000000 | #98AFC7 | Pass |
| a OWASP Top Ten | 9.29:1 | 4.5:1 | #000000 | #98AFC7 | Pass |
| a OWASP Application Se… | 9.29:1 | 4.5:1 | #000000 | #98AFC7 | Pass |
| a OWASP GenAI Security… | 21.00:1 | 4.5:1 | #000000 | #FFFFFF | Pass |
| a OWASP AI Exchange | 21.00:1 | 4.5:1 | #000000 | #FFFFFF | Pass |
Methodology: The top 20 text elements by font size were checked. Background color was sampled from the desktop screenshot using a 5-point pattern. WCAG 2.1 AA requires 4.5:1 for normal text and 3:1 for large text.
CLighthouse Accessibility AuditsActionScore 77/100 — 6 failing, 22 passedREVIEW
Accessibility
These checks highlight opportunities to improve the accessibility of your web app. Automatic detection can only detect a subset of issues and does not guarantee the accessibility of your web app, so manual testing is also encouraged.
ARIA
Focusable descendents within an `[aria-hidden="true"]` element prevent those interactive elements from being available to users of assistive technologies like screen readers. Learn how `aria-hidden` affects focusable elements.
Informational: a Permissions-Policy directive showing feature -> allowed origins.
Source: MDN Permissions-Policy
| Failing Elements |
|---|
header > div.header-wrapper > nav.alt-nav > a.menu-toggler header > div.header-wrapper > nav.alt-nav > a.menu-toggler |
nav.alt-nav > ul.mobile-menu > li > a.menu-toggler nav.alt-nav > ul.mobile-menu > li > a.menu-toggler |
These are opportunities to improve the usage of ARIA in your application which may enhance the experience for users of assistive technology, like a screen reader.
Names and labels
When a button doesn't have an accessible name, screen readers announce it as "button", making it unusable for users who rely on screen readers. Learn how to make buttons more accessible.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
div > form > div.search-div > button#search-button div > form > div.search-div > button#search-button |
Screen reader users rely on frame titles to describe the contents of frames. Learn more about frame titles.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
div.main-wrapper > div > section#upcoming > iframe div.main-wrapper > div > section#upcoming > iframe |
These are opportunities to improve the semantics of the controls in your application. This may enhance the experience for users of assistive technology, like a screen reader.
Contrast
Low-contrast text is difficult or impossible for many users to read. Learn how to provide sufficient color contrast.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
Donate Now! header > div#banner > p > a |
Donate header > div.mobile > div > a.cta-button |
Join header > div.mobile > div > a.cta-button |
More details section#featured_events > div#ev0 > p > a |
Jordan Harband and Przemyslaw (Rogue) Roguski div.main-wrapper > section.homepage-blog > p.author > a |
, April 15, 2026 div.main-wrapper > section.homepage-blog > p.author > span |
...read more main > div.main-wrapper > section.homepage-blog > a |
Start a project div > div.idea-container > div.start > a.cta-button |
Announcing the Retirement of OWASP Meetup Platform section.news-events > ul > li > a |
, January 13, 2026 section.news-events > ul > li > span |
The OWASP Foundation appoints Stacey Ebbs as Communications & Marketing Manager section.news-events > ul > li > a |
, November 19, 2025 section.news-events > ul > li > span |
OWASP Certified Secure Software Developer section.news-events > ul > li > a |
, October 3, 2025 section.news-events > ul > li > span |
GSoC 2025 Recap section.news-events > ul > li > a |
, October 1, 2025 section.news-events > ul > li > span |
OWASP Global AppSec EU 2026 - Vienna, Austria section.news-events > ul > li > a |
, June 22-26, 2026 section.news-events > ul > li > span |
OWASP Global AppSec USA 2026 - San Francisco, CA section.news-events > ul > li > a |
, November 2-6, 2026 section.news-events > ul > li > span |
OWASP Global AppSec EU 2027 - Vienna, Austria section.news-events > ul > li > a |
, June 21-25, 2027 section.news-events > ul > li > span |
OWASP Global AppSec USA 2027 - Atlanta, GA section.news-events > ul > li > a |
, September 20-24, 2027 section.news-events > ul > li > span |
Edit on GitHub div.repo > a > div.reset-3c756112--menuItemIcon-206eb252 > span |
Become a corporate supporter div.member-wrapper > section.member-list > div.member-cta > a.callout-link |
General Disclaimer footer > section.footer-wrapper > p.disclaimer > a |
These are opportunities to improve the legibility of your content.
Tables and lists
Screen readers require list items (`<li>`) to be contained within a parent `<ul>`, `<ol>` or `<menu>` to be announced properly. Learn more about proper list structure.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
div.header-wrapper > nav.alt-nav > ul.mobile-menu > li div.header-wrapper > nav.alt-nav > ul.mobile-menu > li |
search input div.header-wrapper > nav.alt-nav > ul.mobile-menu > li |
MAKE A DONATION div.header-wrapper > nav.alt-nav > ul.mobile-menu > li |
BECOME A MEMBER div.header-wrapper > nav.alt-nav > ul.mobile-menu > li |
SITEMAP div.header-wrapper > nav.alt-nav > ul.mobile-menu > li |
These are opportunities to improve the experience of reading tabular or list data using assistive technology, like a screen reader.
Best practices
Touch targets with sufficient size and spacing help users who may have difficulty targeting small controls to activate the targets. Learn more about touch targets.
Performance issues directly impact user engagement and conversion rates.
| Failing Elements |
|---|
div > form > div.search-div > button#search-button div > form > div.search-div > button#search-button |
These items highlight common accessibility best practices.
A+Heading Hierarchy10 headingsPASS
- H1 Explore the worldof cyber security
- H2 Are you an OWASP Member?
- H2 7ASecurity Platinum Corporate Supporter
- H2 It’s our 25th Anniversary! Get ready for an unforgettable experience at the OWASP Global AppSec EU Conference!
- H2 Bridging the Gap in Product Lifecycle Management: How OpenEoX and CLE Work Together
- H3 Upcoming at OWASP
- H3 Recent OWASP News & Opinions
- H3 Upcoming Conferences
- H2 Spotlight: Automattic
- H2 Corporate Supporters
AAlt Text Quality11 of 17 images have issuesPASS
| Issue | Count |
|---|---|
| generic | 11 image(s) |