Audit Report

tmall.com

https://tmall.com screenshot

Speed results

91%

Congratulations, you can relax!

Your page is scoring really strongly in the Speed test, so you don't necessarily need to make any changes just now.

We found 7 opportunities for you to improve your Speed score
Note: this report does not include all the detailed optimization guidance that you would get in your paid report.

Why page speed matters

Page speed is a critical factor in getting your page ranking higher in Google search engine results pages (SERPS). If your website isn't on par with the top 10 organic pages, you won't stand much of a chance of ranking on the first search results results page.

Since 2010, Google has used site speed as a ranking factor and they confirmed it as a landing page factor in 2018.

And it's now more important than ever to get your page in good shape as Google continues to refine and adjust the format and source of the results it shows on the first page. You'll have noticed paid ad panels, local results panels, rich snippets and other elements all encroaching on space that was once reserved for organic search results.

How to improve your site speed

Your site was tested using Google Page Speed Insights tool which provides detaled analysis of all the important factors affecting your page speed. The following detailed test results give you pointers to what's impacting your current site speed and how you can improve things.

Your site was tested for speed performance on a Mobile device. This is because, according to Statcounter, mobile devices are now the dominant medium for internet access. If you optimize for mobile, it follows that desktop performance will also be improved.

Your page speed test results

Speed Index
100%
Congratulations! Your page loads within 3.4 seconds so you don't necessarily need to do anything to improve that just at the moment.
DOM size
81%
Your page has a relatively large number of HTML elements (i.e. a large Document Object Model - DOM). You could improve this by reviewing your page to see if it's possible to reduce the size of the DOM.
Total Byte weight
100%
Your page doesn't have any resources which are really large, good job!
Server response time
100%
Excellent, your server responded in less than 600ms.
Redirects
100%
Your page doesn't have multiple redirects, that's great!
Uses text compression
100%
Good, your server uses text compression to minimize network bytes.
Render blocking resources
100%
Nice job, your page doesn't have an excessive number of render-blocking resources.
Bootup time
81%
Your page's JavasScript takes between 2 and 3.5 seconds to execute. Consider reducing the time spent parsing, compiling, and executing JS. You may find delivering smaller JS payloads helps with this. Learn more.
Time to interactive
44%
Your page takes 7.9 seconds to become fully interactive. That makes for a bad user experience so you should definitely take action to improve this score. Reducing your JavaScript execution time is usually a good first step to improving this. Time to interactive is the amount of time it takes for the page to become fully interactive. Learn more.
Uses long cache Time To Live
78%
A long cache lifetime can speed up repeat visits to your page. Learn more. You should leverage caching because it will help improve page load times by preventing the browser from having to refetch static contenet every time a users visits your site.
Main thread work breakdown
46%
Your page's JavasScript takes over 3.5 seconds to execute. Consider reducing the time spent parsing, compiling and executing JS. You may find delivering smaller JS payloads helps with this. Learn more
Largest content element
100%
Your page's largest element loads in less than 2.5 seconds so it's fast enough to not have any negative impact on your site visitors experience, great!
Third party summary
100%
Your page doesn't load an excessive number of third-party scripts, that's good!
Unminified Javascript
100%
Your page's JavaScript files are small or suitably minimized, well done.
Duplicated Javascript
100%
Good job, your page doesn't have any significant duplications of JavaScript modules.
Unused Javascript
67%
Reduce unused JavaScript and defer loading scripts until they are required to decrease bytes consumed by network activity. Learn more.
Legacy Javascript
100%
Great, your page doesn't have any significant legacy JavaScript issues.
Unminified CSS
100%
Your page's CSS files are small or suitably minimized, good work!
Unused CSS
100%
Your page's CSS is optimized so there's no duplication, great job!
Unsized images
100%
Great, your page doesn't have any unsized images.
Optimized images
46%
Your image file sizes are larger than they need to be. Smaller image file sizes can dramatically improve your page load speed. There are a number of ways you can optimize your images, including: use image CDNs, compress images, replace animated GIFs with video, lazy load images, serve responsive images, appropriately resize them, use WebP images. As a first step you should resize your images - i.e. scale them to appropriate dimensions for their use - and then optimize thenm using an online service like Compress PNG and Compress JPEG.
Responsive images
100%
Great, the images on your page are appropriately sized.
Elements causing layout shift
100%

Security results

21%

You need to make a number of critical Security improvements to your page as soon as possible.

Incidents of website hijacking and data breaches are growing daily and hackers are increasingly targeting small business websites as larger corporations get their security sorted. The changes you need to make are simple but they'll address the most common vulnerabilities as defined by the Open Web Application Security Project (OWASP) standard.

We found 7 opportunities for you to improve your Security score
Note: this report does not include all the detailed optimization guidance that you would get in your paid report.

Why site security matters

There are endless website hacking statistics published on the internet which, in itself, should be a trigger for action to any website owner. For example, according to Forbes, even way back in 2013 there were an average of 30,000 websites hacked every day. Incredibly, 56% of all internet traffic is from automated sources like hacking tools, site scrapers, spammers, impersonators and bots.

And because large corporates have had to tighten up their website security, it's small and medium size business' websites which have increasingly become a target for hackers.

Securing your small or medium size business' website is, of course, only one aspect of cyber security that you need to implement. But, it's shockingly true to say that a huge proportion of websites don't have even the most basic security measures in place.

Security matters for search engine ranking too; since 2018, Google has been penalising websites without SSL (HTTPS) enabled. So not only are those sites insecure but they'll also rank less highly in the search engine results pages.

How to improve your site security

Your site was tested against the top ten risks as defined by the Open Web Application Security Project (OWASP) Secure Headers Project. This project defines the current best practice standard for protecting your website's vulnerability against hackers.

These measures are easily implemented and are fundamental security precautions which protect your site. The theory is that if you make your website that bit harder to hack, the hackers will quickly move on to an easier target.

Your site security audit test results

Safe browsing blacklist check
83%
Google, McAfee and Norton Antivirus all maintain website blacklists which are used to flag risky websites to their users. If your site is on one of these lists, then both your website traffic and, potentially, your business reputation, will be impacted.
  • Your page is not blacklisted by Google.
  • Your page is not blacklisted by McAfee.
  • We couldn't get your site's Norton Safe Web rating. You can check your site status here.
Strict Transport Security (HSTS)
100%
Secure : HSTS is enabled
X-Frame-Options
0%
Your site is insecure : the X-Frame-Options header isn't set; the site is vulnerable to clickjacking attack. HTTP response headers can be used to indicate whether or not a browser should be allowed to render a page in a <frame> or <iframe>. Find out more about X-Frame-Options here.
X-XSS-Protection
0%
Your site is insecure : the X-XSS-Protection header has been deprecated by modern browsers and its use can introduce additional security issues on the client side. As such, it's recommended to set the header to 0 in order to disable the XSS Auditor, and not allow it to take the default behavior of the browser handling the response. Find out more about X-XSS-Protection here.
X-Content-Type-Options
0%
Your site is insecure : browsers are vulnerable to the content sniffing attack. Find out more about X-Content-Type-Options here. Setting this header will prevent the browser from interpreting files as a different MIME type to what is specified in the X-Content-Type-Options header.
Server
0%
Your site is insecure : browsers may be able to tell which server technology your website is running on. That might make it easier for hackers to exploit known vulnerabilities with that technology. It's usually best to hide that information by explicitly unsetting the Server header.
X-Powered-By
100%
Secure : the website is hiding information about the scripting language your website is running on.
Content-Security-Policy (CSP)
0%
Your site is insecure : the Content-Security-Policy header isn't set so the page might be vulnerable to a wide range of attacks, including cross-site scripting and other cross-site injections. Find out more about Content-Security-Policy here. The Content-Security-Policy tells the browser where resources are allowed to be loaded and if it's allowed to parse/run inline styles or Javascript. This is important because it prevents content injection attacks, such as Cross Site Scripting (XSS).

WARNING: Setting up a Content-Security-Policy is a complex undertaking and, if you get it wrong, can break your site. Use Content-Security-Policy-Report-Only to debug your Content-Security-Policy until no errors are reported in the console.
X-Permitted-Cross-Domain-Policies
0%
Your site is insecure : the X-Permitted-Cross-Domain-Policies header isn't set. A cross-domain policy file is an XML document that grants a web client, such as Adobe Flash Player or Adobe Acrobat (though not necessarily limited to these), permission to handle data across domains. Find out more about X-Permitted-Cross-Domain-Policies here.
Referrer-Policy
0%
Your site is insecure : the Referrer-Policy header isn't set. That means there is no policy for sending Referrer header information when performing a same-origin or cross-origin requests. Find out more about Referrer-Policy here.

Search Engine OptimizationSEO results

51%

Your on-page Search Engine Optimization test score is okay but you can definitely make some simple changes to help improve your score further.

The chances of your page being ranked highly in the search engine results pages is dramatically reduced if you fail to get these basic SEO things right. Google has produced a helpful SEO guide and this test checks your site against their recommendations and more.

We found 11 opportunities for you to improve your Search Engine OptimizationSEO score
Note: this report does not include all the detailed optimization guidance that you would get in your paid report.

Why on-page search engine optimisation matters

There are almost 2 billion websites on the internet today and people rely on search engines when they want to find information or services. So, in order for your website to be found amongst all those millions of other sites, your page's search engine optimization - or SEO - is more important than ever.

To be successful in organic search means your site has to be optimized for a combination of factors which search engines consider important – technical, on-page and off-page. Off-page techniques – such as link building – receive a lot of attention on the web and of course they're really important but, off-page SEO won't be enough if you don’t pay attention to the fundamentals and get your on-page SEO right.

On-page SEO is important because it helps search engines understand your website and its content, as well as identify whether it is relevant to a searcher's query. So, in addition to publishing relevant, high-quality content, on-page SEO includes optimizing things like your headlines, HTML tags (title, meta, and header), and images.

How to improve your Search Engine Optimization score

Your site was tested for over 20 of these on-page SEO fundamentals and the detailed results below will tell you where, and how, you might need to make some changes to improve your score.

Your on-page Search Engine Optimization results

Robots.txt file
0%
There is no robots.txt file found at https://tmall.com/robots.txt. You need to add a robots.txt - find out more and how to create one, over at Google.
Sitemap.xml
100%
Excellent, there is a Sitemap file found at https://tmall.com/sitemap.xml.
URL format
100%
The URL is well formatted, so search engines will like it!
Page language
0%
Page language: The page doesn't have a lang attribute set to inform browsers what the language of the content is. You should set the <html lang=""> attribute according to the page language - we've detected it as being :
<html lang="un">
Robots meta tag
100%
The page doesn't have a <meta name="robots" content="..." /> tag set so it is indexable by search engines, which is good!
Page title
25%
The page <title> could be longer. It's 16 characters so you could add up to 49 more characters to bring it up to the recommended maximum of 65 and make the most of the available title space.
Page description
0%
The page is missing a <meta name="description" ... /> tag. You should add a decription, in the <head> section of your page, of between 50 and 160 characters to help your visitors, and search engines, understand what your page is about.
Open Graph meta tags
0%
Adding Open Graph tags to your website won’t directly affect your on-page SEO, but it will influence the performance of your links on social media, so that means it's worth adding them.
Canonical URL
0%
No canonical link meta tag found on your page. You should add a cannonical link meta tag to control how duplicate content pages are treated by search engines.
Scaling for mobile devices
100%
Mobile page scaling properties are correctly set via the Viewport meta tag, that's good.
Valid HTML
95%
The page HTML has 2 errors or warnings that you should review and/or fix.
Page content
0%
Unable to get any page content. That might be because there's error with the page's code - check the "Valid HTML" section above - or, because there's genuinely no content on the page. Either way, you probably need to fix that because search engines will have the same trouble as us. Some of the other tests run on your page will have been impacted by this so the results may be unreliable.
H1 page heading
100%
The page is missing a <h1> heading. A unique <h1> heading for each page is really important to help your visitors, and search engines, understand what your page is about. In Aug-21 Google announced that they'd made a change to the way in which they generate titles for search results pages - they provided a further update in Sep-21. They've switched focus from using the <title> content to using the <h1> heading. The article doesn't make it absolutely clear what criteria will be used or how long the heading should be, so the recommendations here are provisional.
H2 subheadings
0%
No <h2> page subheadings found. A well structured page should probably have at least one <h2> subheading in the <body> section of your page to break up the content.
Other subheadings
0%
No other page subheadings were found. A well structured page should probably have at least one other <h3>, <h4>, <h5> or <h6> subheading to break up the content.
Image ALT tags
100%
There were no images found on this page.
Plugins
100%
Great, there were no plugin tags found on the page.
Broken links
100%
There were no links found on the page.
Nofollow internal links
100%
There are no nofollow issues with any internal links on the page, well done.
Nofollow external links
100%
There are no nofollow issues found with any external links on your page, that's great.
Keyword analysis
0%
No keyword data available.
URL is indexed in Google
100%
This page is indexed by Google, that's good news.
Google My Business presence
0%
There's no presence for this website on Google My Business. A search using the term "2021天猫简版" from your page title didn't yield a matching listing in GMB. With a GMB listing, you can add your business details to Google, showcase your services, and much more. Creating a listing is free so there's no excuse not to list your business - get started here.
================== END ==================