Changes

https://www.theverge.com

Compared to previous audit · 11 minutes ago View previous audit

New issues

Resolved

score changes

Category	Previous	Current	Change
Composite	C (78)	C (78)	—
Performance	C (76)	C (76)	—
Security	C (73)	C (73)	—
Accessibility	C (77)	C (77)	—
SEO	A (93)	A (92)	-1.000
Infrastructure	B (87)	B (87)	—
Compliance	D (67)	D (67)	—
Content	A (92)	A (91)	-1.000
Sustainability	C (75)	C (75)	—

Metric	Previous	Current	Change
Performance	3300	3500	+200
Accessibility	9700	9700	—
Best Practices	9600	9600	—
SEO	9200	9200	—
PWA	0	0	—
Desktop Performance	7400	7800	+400
Desktop Accessibility	9300	9300	—
Desktop Best Practices	9600	9600	—
Desktop SEO	9200	9200	—
FCP	2.71 s	2.33 s	-380 ms
LCP	8.61 s	8.86 s	+244 ms
TBT	3.57 s	3.12 s	-456 ms
CLS	0.005	0.007	+0.002
Desktop FCP	820 ms	692 ms	-128 ms
Desktop LCP	1.79 s	1.66 s	-126 ms
Desktop TBT	292 ms	302 ms	+10 ms
Desktop CLS	0.022	0.022	—
TTFB †	58 ms	57 ms	-2 ms
DNS †	54 ms	53 ms	-2 ms
TLS †	2 ms	2 ms	-0 ms
Connect †	0 ms	0 ms	+0 ms
Total †	61 ms	59 ms	-2 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

CRITICAL Broken link: https://www.instagram.com/verge content

CRITICAL 196 of 200 links are healthy content

WARNING https://www.theverge.com/_next/static/chunks/pages...: 2907ms CPU time performance

WARNING 200 inline style attribute(s) detected security

WARNING 154 third-party resources (53% of weight) performance

WARNING Missing or non-HTML5 doctype seo

WARNING 99 text node(s) render below 12 CSS pixels on mobile accessibility

WARNING 202 HTTP requests — consider bundling or reducing performance

WARNING Unattributable: 1903ms CPU time performance

WARNING 1 render-blocking <script src> tag(s) without async/defer performance

WARNING Third-party scripts: 7293ms (50% of total) performance

WARNING 3 advertising/retargeting trackers detected compliance

WARNING https://www.theverge.com/: 1231ms CPU time performance

WARNING Transfer efficiency: 71% sustainability

WARNING Total JS execution time is 14.5 s -- over the 3.5s budget performance

WARNING https://www.theverge.com/_next/static/chunks/frame...: 2362ms CPU time performance

WARNING https://securepubads.g.doubleclick.net/pagead/mana...: 1183ms CPU time performance

WARNING 199 inline style attribute(s) detected security

WARNING 1 heading(s) are over 120 characters -- likely a misformatted paragraph accessibility

WARNING Unattributable: 1886ms CPU time performance

WARNING https://www.theverge.com/: 1217ms CPU time performance

WARNING 203 HTTP requests — consider bundling or reducing performance

WARNING 155 third-party resources (53% of weight) performance

WARNING 197 of 200 links are healthy content

WARNING Transfer efficiency: 70% sustainability

WARNING https://www.theverge.com/_next/static/chunks/pages...: 3139ms CPU time performance

WARNING https://securepubads.g.doubleclick.net/pagead/mana...: 1468ms CPU time performance

WARNING https://www.theverge.com/_next/static/chunks/frame...: 2452ms CPU time performance

CRITICAL 1 control(s) without accessible label accessibility

CRITICAL 2 non-essential cookie(s) set without consent banner compliance

CRITICAL Cookie '_vm_consent_type' is missing the Secure flag security

CRITICAL og:image is not reachable content

CRITICAL Page weighs 14.0 MB (4.6 MB transferred) performance

CRITICAL No H1 heading found accessibility

WARNING HSTS is missing includeSubDomains security

WARNING form-action directive is missing security

WARNING External script from cdn.cookielaw.org lacks integrity attribute security

WARNING External script from cdn.concert.io lacks integrity attribute security

WARNING External script from tag.wknd.ai lacks integrity attribute security

WARNING External script from client.aps.amazon-adsystem.com lacks integrity attribute security

WARNING 7 link(s) with generic text accessibility

WARNING X-Content-Type-Options header is missing security

WARNING 2 link(s) open in a new tab without rel=noopener security

WARNING External script from theverge.coral.coralproject.net lacks integrity attribute security

WARNING External script from cdnjs.cloudflare.com lacks integrity attribute security

WARNING 15 link(s) open in new tab without warning accessibility

WARNING <iframe> missing title attribute (src="") accessibility

WARNING External script from pub.doubleverify.com lacks integrity attribute security

WARNING https://www.theverge.com/_next/static/chunks/pages...: 169 KB unused (38%) performance

WARNING default-src directive is missing security

WARNING No DMARC record found security

WARNING 133 images missing explicit width/height content

WARNING Referrer-Policy header is missing security

WARNING Cookie '_vm_consent_type' is missing the HttpOnly flag security

WARNING External script from cdn.bullwhip.cloud lacks integrity attribute security

WARNING https://www.theverge.com/metrics/gtm.js?id=GTM-WQ5...: 222 KB unused (32%) performance

WARNING CNAME record at zone apex infrastructure

WARNING Privacy Policy not detected compliance

WARNING 1.08g CO2 per page view sustainability

WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance

WARNING Broken link: https://securepubads.g.doubleclick.net content

WARNING External script from apps.voxmedia.com lacks integrity attribute security

WARNING JavaScript is 3.4 MB — consider code splitting or lazy loading performance

WARNING Broken link: https://pagead2.googlesyndication.com content

WARNING X-Frame-Options header is missing security

WARNING X-Powered-By header reveals technology stack security

WARNING No SPF record found security

WARNING OpenAPI / Swagger spec exposed at /swagger.json security

WARNING Title is only 3 characters — consider expanding seo

WARNING 1.08g CO2 — above the median website (0.60g) sustainability

WARNING External script from securepubads.g.doubleclick.net lacks integrity attribute security

WARNING External script from ep2.adtrafficquality.google lacks integrity attribute security

WARNING Third-party code accounts for 53% of page weight (2.4 MiB of 4.6 MiB) performance

WARNING Page weight 4.6 MB exceeds 1 MB target by 3.6 MB performance

WARNING base-uri directive is missing security

WARNING Cookie 'vmidv1' is missing the HttpOnly flag security

WARNING Cookie '_vm_consent_type' has no SameSite attribute security

WARNING No Permissions-Policy header security

WARNING Registrar lock is NOT enabled infrastructure

WARNING Permissions-Policy header is missing security

WARNING Cross-Origin-Embedder-Policy header is missing security

WARNING External script from config.aps.amazon-adsystem.com lacks integrity attribute security

WARNING External script from www.google.com lacks integrity attribute security

WARNING External script from www.googletagservices.com lacks integrity attribute security

WARNING External script from btloader.com lacks integrity attribute security

WARNING External script from assets.zephr.com lacks integrity attribute security

WARNING https://www.gstatic.com/recaptcha/releases/U5VsmTD...: 175 KB unused (48%) performance

WARNING Cross-Origin-Opener-Policy header is missing security

WARNING External script from secure.cdn.fastclick.net lacks integrity attribute security

WARNING Broken link: https://aax.amazon-adsystem.com content

set-cookie

vmidv1=8efd5081-3869-4e6e-aa88-2dbf5b5c123f;Expires=Thu, 08 May 2031 08:34:10... → vmidv1=deda4316-21b8-4a13-91f5-a655689c682b;Expires=Thu, 08 May 2031 08:45:12...

12 headers unchanged

Technology stack unchanged

26 technologies unchanged

Looking ahead

+20 pts

C (78) Could reach A+ (98)

Security +27Performance +24Accessibility +22Compliance +18Sustainability +10Content +9Infrastructure +8SEO +8

Estimate — actual results may vary (79 issues to fix)

Website improvement report — Theverge

May 9, 2026 → May 9, 2026

C C 78 → 78 0 pts

Resolved

New issues

Still remaining

Financial summary

Investment delivered

$950 in development time

Investment remaining

$9,992 to complete the remaining items

Ongoing risk

$13,126/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

Metric	Before	After	Change
Overall score	78 (C)	78 (C)	0
Performance	76 (C)	76 (C)	0
Security	73 (C)	73 (C)	0
Accessibility	77 (C)	77 (C)	0
SEO	93 (A)	92 (A)	-1
Infrastructure	87 (B)	87 (B)	0
Compliance	67 (D)	67 (D)	0
Content	92 (A)	91 (A)	-1
Sustainability	75 (C)	75 (C)	0

Resolved (11)

199 inline style attribute(s) detected (Security)
→ Reduced attack surface for visitors
1 heading(s) are over 120 characters -- likely a misformatted paragraph (Accessibility)
→ Improved usability for assistive technology users
Unattributable: 1886ms CPU time (Performance)
→ Page loads faster for users
https://www.theverge.com/: 1217ms CPU time (Performance)
→ Page loads faster for users
203 HTTP requests — consider bundling or reducing (Performance)
→ Page loads faster for users
155 third-party resources (53% of weight) (Performance)
→ Page loads faster for users
197 of 200 links are healthy (Content)
→ Stronger social sharing and on-page quality
Transfer efficiency: 70% (Sustainability)
→ Lower carbon footprint per page view
https://www.theverge.com/_next/static/chunks/pages...: 3139ms CPU time (Performance)
→ Page loads faster for users
https://securepubads.g.doubleclick.net/pagead/mana...: 1468ms CPU time (Performance)
→ Page loads faster for users
https://www.theverge.com/_next/static/chunks/frame...: 2452ms CPU time (Performance)
→ Page loads faster for users

Recommended next steps (79)

Sprint 1
Broken link: https://www.instagram.com/verge (Content)
Sprint 1
196 of 200 links are healthy (Content)
Sprint 2
1 control(s) without accessible label (Accessibility)
Sprint 2
2 non-essential cookie(s) set without consent banner (Compliance)
Sprint 1
Cookie '_vm_consent_type' is missing the Secure flag (Security)
Sprint 1
og:image is not reachable (Content)
Sprint 1
Page weighs 14.0 MB (4.6 MB transferred) (Performance)
Sprint 1
No H1 heading found (Accessibility)
Sprint 1
https://www.theverge.com/_next/static/chunks/pages...: 2907ms CPU time (Performance)
Sprint 2
200 inline style attribute(s) detected (Security)
Sprint 1
154 third-party resources (53% of weight) (Performance)
Sprint 1
Missing or non-HTML5 doctype (SEO)
Sprint 1
99 text node(s) render below 12 CSS pixels on mobile (Accessibility)
Sprint 2
202 HTTP requests — consider bundling or reducing (Performance)
Sprint 1
Unattributable: 1903ms CPU time (Performance)

…and 64 more recommended item(s)

Browse & Analyze

Learn