QA Report - https://example-agency.com

SiteVett

https://example-agency.com

2026-03-15 14:32:00 sample

77/ 100

Room to Improve

Passed

Failed

Warnings

Pages

SiteVett Summary

https://example-agency.com

AI reviewer

The homepage immediately establishes credibility with named client logos including Microsoft and the BBC, alongside the "Featured Work" section which surfaces real project outcomes rather than vague brand statements. The visual design is clean and consistent across the reviewed pages, with a coherent typography system and disciplined use of whitespace that reads as deliberate.

The primary value proposition could be sharper. The H1 "We build websites that work" is a fine working title but does not differentiate the agency from any other web shop, and a visitor still has to scroll to learn what the company actually specialises in. The services pages would benefit from breaking up dense paragraphs into scannable sub-sections; copy on /services/seo runs to 1,200 words without subheadings, which is where most readers will drop off. Calls to action across the site read as a mix of "Get Started", "Learn More", "Contact Us" and "Reach Out" -- visitors would find a clearer path with one primary CTA used consistently. Finally, the team page lists names and roles but no photos, which weakens the personal-connection angle for an agency selling trust as much as code.

This is a solid foundation with real credibility signals already in place. The highest-leverage change is sharpening the homepage value proposition so the differentiator is clear in the first five seconds. A focused half-day of copy work would likely move the needle more than any other single fix.

Failures 4

3 broken links found across 12 pages.-5 pts

FUNC-001 All links resolve (no 404s, no broken links)

Broken links frustrate visitors, hurt SEO rankings, and make your site look unmaintained.

Check each broken link. Update or remove dead links. For links returning 403, the site may be blocking automated requests — verify manually.

- /team/john → 404 - /about-old → 404 - /careers → 404

3 visual inconsistencies found between /home and /services.-3 pts

AI-002 Visual consistency across pages (alignment, spacing, colors)

Review the visual consistency findings. Check for inconsistent spacing, alignment, or color usage across pages.

- Header spacing: 14px on /home vs 22px on /services - CTA button padding: 12px vs 8px - Hero font weight: 600 on homepage, 400 on services

Contact form on /contact did not show a success confirmation.-5 pts

FUNC-004 Contact form submits successfully and redirects to thank-you page

If a contact form silently fails or lacks a confirmation, visitors don't know their message was received.

Test the contact form manually. If CAPTCHA prevents automated testing, verify the form submits and redirects to a thank-you page.

- Filled with test data (Jane Smith, jane@test.com) - No success element detected after 10s wait - Form action: /wp-admin/admin-ajax.php

2 pages have H1 tag problems.-3 pts

CONT-004 Each page has exactly one H1 tag

Multiple H1 tags confuse screen readers and search engines about which heading is the main topic of the page.

Ensure each page has exactly one H1 tag. Pages with zero or multiple H1s confuse search engines and screen readers.

- /services/seo — 0 H1 tags (missing) - /blog/new-office — 2 H1 tags (should have exactly 1)

Warnings 11

Lorem ipsum placeholder text found on 1 page.-1 pts

BSR-001 Search for leftover placeholder: "lorem ipsum"

Search the page source for leftover template text and replace it with the correct information.

- /services/seo — paragraph 3: 'Lorem ipsum dolor sit amet'

2 images missing alt text on /about.-1 pts

CONT-005 All images have alt text

Missing alt text makes images invisible to screen readers and hurts image search rankings.

Verify the accessibility statement page exists and includes required compliance language.

- hero-banner.jpg (1200×600) - team-photo.png (800×400)

2 spelling errors and 1 grammar issue found.-1 pts

GRAM-001 No spelling errors on pages (deduplicated by word)

Spelling errors undermine credibility. Visitors and clients notice them even when the content is otherwise good.

Review flagged spelling errors. Some may be proper nouns or technical terms. Fix genuine misspellings in the page content.

- /services: 'recieve' → receive - /about: 'seperate' → separate - /home: missing comma after introductory clause

Theme is 2 versions behind.-0.5 pts

WPBE-F001 WordPress plugins are up to date (detected from page source)

Update all WordPress plugins to their latest versions. Outdated plugins may have security vulnerabilities.

- WordPress 6.4.2 - flavor theme 3.2 (current: 3.4) - WPForms 1.8.5 - Yoast SEO 22.1

Inconsistent brand tone across pages.-1 pts

AI-007 Brand tone is consistent and appropriate across pages

Review the AI analysis of brand tone. Ensure text voice is consistent across all pages — avoid mixing formal and casual styles.

- /home uses formal corporate voice - /blog/new-office uses casual first-person - CTA labels vary: 'Get Started', 'Learn More', 'Contact Us', 'Reach Out'

Lighthouse mobile performance score 48/100 (below 50 threshold).-1.5 pts

FUNC-006 Lighthouse performance, accessibility, and best practices scores acceptable

Low Lighthouse scores indicate slow load times, accessibility barriers, or browser compatibility issues that hurt real visitors.

Test the flagged functionality manually in a browser. Verify it works on both desktop and mobile.

- LCP: 4.2s - TBT: 890ms - Accessibility: 91/100 - Best practices: 95/100

1 broken image found.-1.5 pts

IMG-001 All images load correctly (no broken images)

Broken images leave empty spaces on the page, making the site look broken and unprofessional.

Replace broken images or update their src attributes. Check for typos in image filenames and verify the files exist on the server.

- /blog/new-office: team-photo.jpg → 404

1 page has an excessively long text block.-0.5 pts

CONT-011 No excessively long text blocks (walls of text)

Long unbroken text blocks are hard to scan on screen. Most web readers skim, and walls of text get skipped.

Break long text blocks into shorter paragraphs or add subheadings. Walls of text reduce readability and increase bounce rates.

- /services — 1,200 words without subheadings

Version information is visible in headers or page source. Hiding versions reduces passive fingerprinting.-1 pts

SEC-007 No server or CMS version disclosure

Exposed version numbers tell attackers exactly which vulnerabilities to try. Hiding them forces blind guessing.

Remove version numbers from meta generator tags and HTTP headers. Hiding versions reduces passive fingerprinting by attackers.

- Server header exposes version: "Apache/2.4.58"

Potentially outdated JavaScript library version(s) detected. Consider upgrading to reduce known vulnerability exposure.-1 pts

SEC-009 No JavaScript libraries with known vulnerabilities

JavaScript libraries with known CVEs can be exploited by attackers to steal data or deface the site.

Update JavaScript libraries with known vulnerabilities. Check the library's changelog for security patches.

- jQuery 3.4.1 detected (minimum safe: 3.5.0). XSS vulnerabilities in jQuery < 3.5.0 (CVE-2020-11022, CVE-2020-11023)

No Permissions-Policy header found on https://example-agency.com/.-0.5 pts

SEC-011 Permissions-Policy header is present

Without a Permissions-Policy header, third-party iframes and scripts can silently use camera, microphone, geolocation, and other powerful browser APIs on your site.

Add a Permissions-Policy header to control which browser features your site can use (camera, microphone, geolocation, etc.).

Adding this header lets you control which browser features (camera, microphone, geolocation) third-party scripts can access.

All Results by Category

Better Search Replace 8/9 passed

Status	Check	Rule ID	Weight
Warn	Search for leftover placeholder: "lorem ipsum"	`BSR-001`	2
Pass	Search for leftover placeholder: "dolor sit amet"	`BSR-002`	2
Pass	Search for leftover placeholder: "[YOUR"	`BSR-003`	2
Pass	Search for leftover placeholder: "example.com"	`BSR-004`	2
Pass	Search for leftover placeholder: "placeholder text"	`BSR-005`	2
Pass	Search for leftover placeholder: "sample text"	`BSR-006`	2
Pass	Search for leftover placeholder: "insert text here"	`BSR-007`	2
Pass	Search for leftover placeholder: "your text here"	`BSR-008`	2
Pass	Search for leftover placeholder: "coming soon"	`BSR-009`	2

Content 12/15 passed

Status	Check	Rule ID	Weight
Fail	Each page has exactly one H1 tag	`CONT-004`	3
Warn	All images have alt text	`CONT-005`	2
Warn	No excessively long text blocks (walls of text)	`CONT-011`	1
Pass	Privacy policy link in footer	`CONT-001`	2
Pass	Accessibility statement link in footer	`CONT-002`	1
Pass	All pages have meta titles	`CONT-006`	2
Pass	All pages have meta descriptions	`CONT-007`	2
Pass	No placeholder text (lorem ipsum, dummy text, etc.)	`CONT-008`	2
Pass	WordPress featured images set on pages	`CONT-009`	1
Pass	No guarantee or outcome promise language	`CONT-012`	1
Pass	H1 tags are within acceptable length	`CONT-013`	1
Pass	H2 tags are unique across pages (no excessive duplication)	`CONT-014`	1
Pass	Images have width and height attributes (prevents layout shift)	`CONT-015`	1
Pass	Images on sensitive pages are appropriate	`AI-001`	2
Pass	Contact information is present and complete	`AI-008`	2

Functionality 6/10 passed

Status	Check	Rule ID	Weight
Fail	All links resolve (no 404s, no broken links)	`FUNC-001`	5
Fail	Contact form submits successfully and redirects to thank-you page	`FUNC-004`	5
Warn	Lighthouse performance, accessibility, and best practices scores acceptable	`FUNC-006`	3
Warn	All images load correctly (no broken images)	`IMG-001`	3
Pass	Phone numbers are clickable (tel: links)	`FUNC-002`	2
Pass	Email addresses are clickable (mailto: links)	`FUNC-003`	2
Pass	Site is mobile responsive (viewport, tap targets, font sizes)	`FUNC-005`	3
Pass	Responsive viewports render correctly (desktop, tablet, mobile)	`AI-005`	2
Pass	No internal links with rel=nofollow (wastes link equity)	`FUNC-007`	1
Pass	Internal links have descriptive anchor text	`FUNC-008`	1

Craftsmanship 10/12 passed

Status	Check	Rule ID	Weight
Fail	Visual consistency across pages (alignment, spacing, colors)	`AI-002`	3
Warn	Brand tone is consistent and appropriate across pages	`AI-007`	2
Pass	Logo links to homepage	`CRAFT-001`	2
Pass	Favicon is present	`CRAFT-002`	1
Pass	Color contrast meets accessibility standards	`CRAFT-003`	2
Pass	Consistent branding (fonts, button colors)	`AI-003`	2
Pass	No awkwardly cropped images	`AI-004`	1
Pass	Forms have clear labels and good user experience	`AI-009`	2
Pass	Content flows logically from page to page	`AI-010`	2
Pass	CTAs are prominent and well-placed	`AI-011`	2
Pass	Hero section is visually appealing with clear messaging	`AI-012`	2
Pass	Formatting is consistent (headings, lists, spacing)	`AI-013`	1

SEO 5/5 passed

Status	Check	Rule ID	Weight
Pass	Open Graph tags present (og:title, og:description, og:image)	`SEO-001`	3
Pass	Meta titles are unique and appropriate length	`SEO-002`	2
Pass	All pages have canonical tags	`SEO-003`	2
Pass	No accidental noindex directives on public pages	`SEO-004`	3
Pass	URLs are not excessively long (under 115 characters)	`FUNC-009`	1

Grammar & Spelling 0/1 passed

Status	Check	Rule ID	Weight
Warn	No spelling errors on pages (deduplicated by word)	`GRAM-001`	2

Security 9/12 passed

Status	Check	Rule ID	Weight
Pass	No mixed content (HTTP resources on HTTPS pages)	`SEC-001`	4
Pass	Security response headers present (HSTS, CSP, X-Frame-Options, Referrer-Policy)	`SEC-002`	2
Pass	HTTP redirects to HTTPS	`SEC-003`	4
Pass	No exposed sensitive files (.env, .git, debug.log, etc.)	`SEC-004`	4
Pass	Auth cookies have Secure, HttpOnly, and SameSite flags	`SEC-005`	2
Pass	No open directory listings	`SEC-006`	3
Warn	No server or CMS version disclosure	`SEC-007`	2
Pass	SSL certificate is valid and not expiring soon	`SEC-008`	5
Warn	No JavaScript libraries with known vulnerabilities	`SEC-009`	2
Warn	Permissions-Policy header is present	`SEC-011`	1
Pass	No forms with insecure HTTP action URLs	`SEC-012`	3
Pass	CDN scripts and stylesheets use Subresource Integrity (SRI)	`SEC-014`	2

Footer 1/1 passed

Status	Check	Rule ID	Weight
Pass	Social media links are in footer only (not header/nav)	`FOOT-001`	1

Navigation 2/2 passed

Status	Check	Rule ID	Weight
Pass	All navigation links resolve correctly	`NAV-001`	3
Pass	Pages have internal links (not orphaned)	`NAV-002`	2

WordPress Backend 1/2 passed

Status	Check	Rule ID	Weight
Warn	WordPress plugins are up to date (detected from page source)	`WPBE-F001`	1
Pass	WordPress themes are up to date (detected from page source)	`WPBE-F002`	1