Scanned 8 hours ago

https://tenby.co.uk

Performance

Accessibility

Best Practices

SEO

Performance

100

Accessibility

Best Practices

SEO

https://tenby.co.uk

First paint: 0.5s

First paint: 1.8s

Loading Timeline

0.4s

0.8s

1.1s

1.5s

1.9s

2.3s

2.6s

3.0s

FCP

0.4s

0.8s

1.1s

1.5s

1.9s

2.3s

2.6s

3.0s

FCP

CCBot Allowed

GPTBot Allowed

YouBot Allowed

Bingbot Allowed

Amazonbot Allowed

ClaudeBot Allowed

Googlebot Allowed

Bytespider Allowed

Claude-Web Allowed

FacebookBot Allowed

ChatGPT-User Allowed

anthropic-ai Allowed

PerplexityBot Allowed

Google-Extended Allowed

Applebot-Extended Allowed

llms.txt Found

noai meta tag Not set

Seo

Performance

Accessibility

Best Practices

0.9s

LCP

0.5s

FCP

0ms

TBT

0.133

CLS

0.5s

Seo

Performance

100

Accessibility

Best Practices

4.1s

LCP

1.8s

FCP

0ms

TBT

0.071

CLS

3.7s

A Records 1 found · 185.151.30.211

IPv6 (AAAA) 1 found

Nameservers (NS) 4 found · ns2.stackdns.com, ns3.stackdns.com, ns1.stackdns.com, ns4.stackdns.com

Mail (MX) 1 found · mx.stackmail.com

Email Security

SPF Record Present

DMARC Record Missing — no email authentication policy

TXT Records (1)

v=spf1 include:spf.stackmail.com a mx -all SPF

How to Fix

Review your security headers and add Content-Security-Policy, Strict-Transport-Security, and Referrer-Policy headers to your server configuration.

Consider implementing HSTS preloading and a comprehensive CSP policy.

referrer-policy Missing

x-frame-options Missing

permissions-policy Missing

x-content-type-options Missing

content-security-policy Missing

strict-transport-security Missing

SSL Certificate Valid · Let's Encrypt · 64 days left

HTTPS Redirect Yes

How to Fix

Review your security headers and add Content-Security-Policy, Strict-Transport-Security, and Referrer-Policy headers to your server configuration.

Consider implementing HSTS preloading and a comprehensive CSP policy.

No cached HTML available for analysis

AI-Powered Insights

Executive Summary

Your website https://tenby.co.uk shows strong performance with excellent page loading speeds and good accessibility scores. The site loads quickly on both mobile and desktop, and search engines can easily crawl your content thanks to the absence of restrictive robots.txt rules. However, there are critical security vulnerabilities that need immediate attention - your site is missing essential security headers that protect visitors from attacks and data breaches. Additionally, your email security setup is incomplete, missing DMARC protection which could allow spammers to impersonate your domain. While the technical foundation is solid, addressing these security gaps should be your top priority to protect both your business and your visitors.

Prioritised Action Plan

Add missing security headers to protect against XSS attacks

Implement Content-Security-Policy and Strict-Transport-Security headers.

Optimise meta description length for search results

Your meta description may be truncated in search engine results pages.

Create an llms.txt file for AI search engine visibility

Help AI assistants understand and recommend your content.

Code Fixes

Header always set Content-Security-Policy "default-src 'self'"
Header always set Strict-Transport-Security "max-age=31536000"

Unlock your full action plan

Run Another Scan

https://tenby.co.uk

Loading Timeline

AI Bot Access

Lighthouse Scores

DNS Health

How to Fix

Security Headers

How to Fix

Link Health

Meta Tags & SEO

Structured Data

AI-Powered Insights

Executive Summary

Prioritised Action Plan

Code Fixes

Unlock your full action plan