Skip to content

Changes

https://bangbros.com
Compared to previous audit · 1 day ago View previous audit

Madrid, Spain Santa Clara, United States

These audits ran from different locations. Timing metrics (TTFB, DNS, TLS) may reflect network path differences rather than site changes.

42
New issues
29
Resolved
24
score changes
CategoryPreviousCurrentChange
CompositeC (78)C (78)
PerformanceC (77)C (76) -1.000
SecurityB (81)C (79) -2.000
AccessibilityC (77)C (73) -4.000
SEOB (87)A (92) +5.000
InfrastructureB (89)B (89)
ComplianceD (61)D (65) +4.000
ContentC (70)D (65) -5.000
SustainabilityD (61)D (65) +4.000
MetricPreviousCurrentChange
Performance 800700 -100
Accessibility 87009200 +500
Best Practices 96009600
SEO 920010000 +800
PWA 00
Desktop Performance 35003900 +400
Desktop Accessibility 83008700 +400
Desktop Best Practices 96009600
Desktop SEO 1000010000
FCP 2.76 s10.52 s +7.76 s
LCP 20.34 s21.75 s +1.41 s
TBT 2.52 s1.21 s -1.31 s
CLS 1.5122.467 +0.955
Desktop FCP 776 ms838 ms +62 ms
Desktop LCP 3.95 s3.95 s
Desktop TBT 252 ms211 ms -41 ms
Desktop CLS 1.1600.659 -0.501
TTFB 446 ms581 ms +136 ms
DNS 7 ms29 ms +22 ms
TLS 18 ms4 ms -13 ms
Connect 12 ms0 ms -12 ms
Total 644 ms988 ms +344 ms

† Timing metrics may vary by worker location and do not necessarily indicate site changes.

CRITICAL 1 button(s) with no accessible text accessibility
CRITICAL No H1 heading found accessibility
CRITICAL Broken link: https://bangbros.com/join1 content
CRITICAL 2 control(s) without accessible label accessibility
CRITICAL Page weighs 11.5 MB (5.3 MB transferred) performance
CRITICAL 1 link(s) with no accessible text accessibility
WARNING 1 field(s) missing recommended autocomplete attribute accessibility
WARNING /phpinfo.php is publicly accessible security
WARNING 106 HTTP requests — consider bundling or reducing performance
WARNING External script from onelist.project1content.com lacks integrity attribute security
WARNING https://bangbros.com/: 978ms CPU time performance
WARNING https://app-assets.project1content.com/tour/vendor...: 395 KB unused (56%) performance
WARNING https://app-assets.project1content.com/tour/vendor...: 1943ms CPU time performance
WARNING SRI adoption: 2/30 third-party resources protected (6%) security
WARNING Title is only 11 characters — consider expanding seo
WARNING Unattributable: 757ms CPU time performance
WARNING 1.50g CO2 per page view sustainability
WARNING 3 of 3 <nav> elements are unlabeled accessibility
WARNING 81 of 83 links are healthy content
WARNING Page weight 5.3 MB exceeds 1 MB target by 4.3 MB performance
WARNING 100 third-party resources (98% of weight) performance
WARNING 2 render-blocking <script src> tag(s) without async/defer performance
WARNING 12 images missing explicit width/height content
WARNING External script from www.google.com lacks integrity attribute security
WARNING External link from onelist.project1content.com lacks integrity attribute security
WARNING 153 inline style attribute(s) detected security
WARNING External script from onenavigation.project1content.com lacks integrity attribute security
WARNING All 12 images use legacy formats (JPEG/PNG/GIF) content
WARNING Images are 1.5 MB — compress or use modern formats performance
WARNING https://www.gstatic.com/recaptcha/releases/rL1ELiQ...: 830ms CPU time performance
WARNING 19 link(s) open in a new tab without rel=noopener security
WARNING 1 unmuted autoplay media element(s) on page content
WARNING 1 field(s) would benefit from inputmode attribute accessibility
WARNING Third-party scripts: 5947ms (76% of total) performance
WARNING 26 link(s) with generic text accessibility
WARNING 1.50g CO2 — above the median website (0.60g) sustainability
WARNING Third-party code accounts for 98% of page weight (5.2 MiB of 5.3 MiB) performance
WARNING Total JS execution time is 7.8 s -- over the 3.5s budget performance
WARNING Broken link: https://fonts.googleapis.com/css?family=Open Sans|Open Sa... content
WARNING 6 images significantly larger than display size content
WARNING Transfer efficiency: 75% sustainability
WARNING https://app-assets.project1content.com/tour/main.b...: 2123ms CPU time performance
CRITICAL Page weighs 13.6 MB (5.5 MB transferred) performance
CRITICAL 1 control(s) without accessible label accessibility
WARNING Transfer efficiency: 69% sustainability
WARNING Images are 1.7 MB — compress or use modern formats performance
WARNING https://app-assets.project1content.com/tour/vendor...: 2814ms CPU time performance
WARNING https://www.gstatic.com/recaptcha/releases/rL1ELiQ...: 2529ms CPU time performance
WARNING No internal links found seo
WARNING SRI adoption: 1/24 third-party resources protected (4%) security
WARNING Third-party code accounts for 98% of page weight (5.4 MiB of 5.5 MiB) performance
WARNING Page has 85 words — thin content seo
WARNING Page weight 5.5 MB exceeds 1 MB target by 4.5 MB performance
WARNING 4 images significantly larger than display size content
WARNING Third-party scripts: 9676ms (72% of total) performance
WARNING https://bangbros.com/: 2205ms CPU time performance
WARNING Unattributable: 1266ms CPU time performance
WARNING 1.56g CO2 — above the median website (0.60g) sustainability
WARNING No <nav> landmark found accessibility
WARNING Dead-end page — no outgoing internal links seo
WARNING All 10 images use legacy formats (JPEG/PNG/GIF) content
WARNING 10 images missing explicit width/height content
WARNING 112 third-party resources (98% of weight) performance
WARNING 118 HTTP requests — consider bundling or reducing performance
WARNING No headings found accessibility
WARNING Thin content — only 85 words seo
WARNING No accessibility statement detected compliance
WARNING 157 inline style attribute(s) detected security
WARNING https://app-assets.project1content.com/tour/main.b...: 2850ms CPU time performance
WARNING https://app-assets.project1content.com/tour/vendor...: 394 KB unused (56%) performance
WARNING 1.56g CO2 per page view sustainability
CRITICAL 3 non-essential cookie(s) set without consent banner compliance
CRITICAL No <main> landmark found accessibility
CRITICAL Cookie 'app_session_id' is missing the Secure flag security
CRITICAL Viewport prevents user zooming compliance
CRITICAL Cookie 'instance_token' is missing the Secure flag security
WARNING form-action directive is missing security
WARNING https://www.gstatic.com/recaptcha/releases/rL1ELiQ...: 186 KB unused (50%) performance
WARNING Registrar lock is NOT enabled infrastructure
WARNING X-Powered-By header reveals technology stack security
WARNING Cookie 'app_session_id' has no SameSite attribute security
WARNING 1 link(s) open in new tab without warning accessibility
WARNING External link from fonts.googleapis.com lacks integrity attribute security
WARNING Skip navigation link is missing (WCAG 2.4.1) accessibility
WARNING Permissions-Policy header is missing security
WARNING No DMARC record found security
WARNING https://app-assets.project1content.com/tour/assets... is missing width/height — may cause layout shift performance
WARNING https://onelist.project1content.com/static/js/main...: 255 KB unused (66%) performance
WARNING base-uri directive is missing security
WARNING External script from app-assets.project1content.com lacks integrity attribute security
WARNING Cookie '__s' is missing the HttpOnly flag security
WARNING No Permissions-Policy header security
WARNING X-Frame-Options header is missing security
WARNING https://media-public-ht.project1content.com/m=eeEa... is missing width/height — may cause layout shift performance
WARNING https://images-assets-ht.project1content.com/BangB... is missing width/height — may cause layout shift performance
WARNING Cross-Origin-Opener-Policy header is missing security
WARNING Cross-Origin-Embedder-Policy header is missing security
WARNING Permissions-Policy header not set -- features default to allow-on-same-origin security
WARNING Referrer-Policy header is missing security
WARNING Cookie 'instance_token' is missing the HttpOnly flag security
WARNING Cookie 'instance_token' has no SameSite attribute security
WARNING JavaScript is 2.2 MB — consider code splitting or lazy loading performance
WARNING https://images-assets-ht.project1content.com/Commo... is missing width/height — may cause layout shift performance
WARNING default-src directive is missing security
WARNING https://images-assets.project1content.com/assets/b... is missing width/height — may cause layout shift performance
WARNING Privacy Policy not detected compliance
WARNING No Open Graph meta tags found content
WARNING Cookie 'app_session_id' is missing the HttpOnly flag security
WARNING <iframe> missing title attribute (src="") accessibility
WARNING GDPR Article 13 disclosure coverage: 0 / 8 categories compliance
set-cookie
instance_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJtaW5kZ2VlayIsI... instance_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJtaW5kZ2VlayIsI...
x-trace
2BF115432767A6797A045C1812536296C71670D702BD7AC53179406D9600 2BFD172A141C28827AFC0D5CD6CBBE7D8F6A262D22EC93F94EC8D82F1600
etag
W/"1d00b4-4TAPcTu6lVxzG1LofwDnO8Dottc" W/"1cf463-UwlymdlSg1HAKa2xm9I9XpPj6Ns"

16 headers unchanged

+ Emotion JavaScript frameworks
+ Vercel Speed Insights Analytics
+ Flickity JavaScript libraries

15 technologies unchanged

Looking ahead

+19 pts
C (78) Could reach A+ (97)
Accessibility +27Performance +24Content +23Compliance +22Security +21Sustainability +10Infrastructure +4SEO +4

Estimate — actual results may vary (81 issues to fix)

Website improvement report — Bangbros

July 11, 2026 → July 13, 2026

C C 78 → 78 0 pts

29

Resolved

42

New issues

39

Still remaining

Financial summary

Investment delivered

$6,417 in development time

Investment remaining

$9,725 to complete the remaining items

Ongoing risk

$1/month in ongoing exposure

Figures are estimates based on local developer hourly rate, industry CPC, and regulatory fine ranges.

Performance by category

MetricBeforeAfterChange
Overall score78 (C)78 (C)0
Performance77 (C)76 (C)-1
Security81 (B)79 (C)-2
Accessibility77 (C)73 (C)-4
SEO87 (B)92 (A)+5
Infrastructure89 (B)89 (B)0
Compliance61 (D)65 (D)+4
Content70 (C)65 (D)-5
Sustainability61 (D)65 (D)+4

Resolved (29)

  • Transfer efficiency: 69% (Sustainability)

    → Lower carbon footprint per page view

  • Page weighs 13.6 MB (5.5 MB transferred) (Performance)

    → Page loads faster for users

  • Images are 1.7 MB — compress or use modern formats (Performance)

    → Page loads faster for users

  • https://app-assets.project1content.com/tour/vendor...: 2814ms CPU time (Performance)

    → Page loads faster for users

  • https://www.gstatic.com/recaptcha/releases/rL1ELiQ...: 2529ms CPU time (Performance)

    → Page loads faster for users

  • No internal links found (SEO)

    → Better search engine visibility

  • SRI adoption: 1/24 third-party resources protected (4%) (Security)

    → Reduced attack surface for visitors

  • Third-party code accounts for 98% of page weight (5.4 MiB of 5.5 MiB) (Performance)

    → Page loads faster for users

  • Page has 85 words — thin content (SEO)

    → Better search engine visibility

  • Page weight 5.5 MB exceeds 1 MB target by 4.5 MB (Performance)

    → Page loads faster for users

  • 4 images significantly larger than display size (Content)

    → Stronger social sharing and on-page quality

  • Third-party scripts: 9676ms (72% of total) (Performance)

    → Page loads faster for users

  • https://bangbros.com/: 2205ms CPU time (Performance)

    → Page loads faster for users

  • Unattributable: 1266ms CPU time (Performance)

    → Page loads faster for users

  • 1.56g CO2 — above the median website (0.60g) (Sustainability)

    → Lower carbon footprint per page view

…and 14 more resolved issue(s)

Recommended next steps (81)

  • Sprint 1

    1 button(s) with no accessible text (Accessibility)

  • Sprint 1

    No H1 heading found (Accessibility)

  • Sprint 1

    Broken link: https://bangbros.com/join1 (Content)

  • Sprint 2

    2 control(s) without accessible label (Accessibility)

  • Sprint 1

    Page weighs 11.5 MB (5.3 MB transferred) (Performance)

  • Sprint 1

    1 link(s) with no accessible text (Accessibility)

  • Sprint 2

    3 non-essential cookie(s) set without consent banner (Compliance)

  • Sprint 1

    No <main> landmark found (Accessibility)

  • Sprint 1

    Cookie 'app_session_id' is missing the Secure flag (Security)

  • Sprint 1

    Viewport prevents user zooming (Compliance)

  • Sprint 1

    Cookie 'instance_token' is missing the Secure flag (Security)

  • Sprint 1

    1 field(s) missing recommended autocomplete attribute (Accessibility)

  • Sprint 2

    /phpinfo.php is publicly accessible (Security)

  • Sprint 2

    106 HTTP requests — consider bundling or reducing (Performance)

  • Sprint 1

    External script from onelist.project1content.com lacks integrity attribute (Security)

…and 66 more recommended item(s)

Send Feedback