Export Report
OVERALL SCORE
Level 3, Bot-Aware
- AI Discoverability 53 out of 100
- Agent Ease of Use 54 out of 100
- Security & Trust 90 out of 100
- GEO, AIO and AEO 66 out of 100
- SEO 100 out of 100
- Performance 83 out of 100
- Accessibility 0 out of 100
What AI sees of your website
Agentic AI for Accounts Payable & Expense Management | AppZen
AppZen builds agentic AI agents for accounts payable and expense management. Purpose-built for finance, trained on $50B+ in enterprise spend, fully auditable.
Next step
Turn this report into a fix workflow
1 failed check is ready to move into MCP or CLI remediation. Generate a repair prompt, connect the scanner to your coding agent, or open the integration docs before your next rescan.
| Metric | Score | Status | Passed | Failed | Warning | Evidence |
|---|---|---|---|---|---|---|
| AI Discoverability | 53 | Needs work | 21 | 0 | 0 | |
| Discoverability | 67 | Needs work | 8 | 0 | 0 | |
| Content Readiness | 27 | Priority fix | 10 | 0 | 0 | |
| Bot Access Control | 63 | Needs work | 3 | 0 | 0 | |
| Agent Ease of Use | 54 | Needs work | 3 | 1 | 0 | View details |
| Skill Discovery | 53 | Needs work | 1 | 0 | 0 | |
| Google Agentic Browsing | 66 | Needs work | 2 | 1 | 0 | View details |
| GEO, AIO and AEO | 66 | Needs work | 10 | 0 | 0 | |
| GEO Readiness | Not Applicable | Not Applicable | 3 | 0 | 0 | |
| AIO Readiness | Not Applicable | Not Applicable | 4 | 0 | 0 | |
| AEO Readiness | Not Applicable | Not Applicable | 3 | 0 | 0 | |
| SEO | 100 | Strong | 10 | 0 | 0 | |
| SEO | 100 | Strong | 10 | 0 | 0 | |
| Security & Trust | 90 | Strong | 24 | 1 | 0 | View details |
| Security & Trust | 90 | Strong | 24 | 1 | 0 | View details |
| Performance | 83 | Mostly ready | 13 | 0 | 0 | |
| Performance | 83 | Mostly ready | 13 | 0 | 0 | |
| Accessibility | 0 | Priority fix | 0 | 1 | 0 | View details |
| Accessibility | 0 | Priority fix | 0 | 1 | 0 | View details |
Prioritized recommendations
Issues ranked by score impact
3 items need attention
Security & TrustSecurity & TrustEstablished
Content-Security-Policy
Content-Security-Policy failed at "Evaluate script execution".
25 Fail
Security & TrustSecurity & TrustEstablished
Content-Security-Policy
Content-Security-Policy failed at "Evaluate script execution".
Needs attention
Content-Security-Policy
Issue
script-src allows dangerous script schemes: blob:.
Details
Why it matters
Content Security Policy reduces the impact of injection bugs by limiting where scripts, styles, frames, forms, and other browser resources can load or execute.
Check name
Content-Security-Policy
Score
75/100
Status
fail
Category
Security & Trust
Maturity
Established
Goal
Constrain browser resource loading and script execution with an enforcing Content-Security-Policy header.
Result
Content-Security-Policy failed at "Evaluate script execution".
Validation steps
Evaluate script execution
script-src allows dangerous script schemes: blob:.
CSP script execution policy is unsafe
Evidence log1 step · 4 lines
Evaluate script execution [fail]! script-src allows dangerous script schemes: blob:.INFOEvaluate script executionINFOInspect effective script directive effectiveDirective="script-src" sources=["'self'","'unsafe-inline'","https://*.hubspot.com","https://*.hubapi.com","https://*.hsappstatic.net","https://*.hsforms.net","https://*.hsforms.com","https://*.hubspotusercontent-na1.net","https://*.hubspotvideo.com","https://f.hubspotusercontent40.net","https://js.hs-analytics.net","https://js.hs-banner.com","https://js.hs-scripts.com","https://js.hsadspixel.net","https://js.hscollectedforms.net","https://js.hscta.net","https://js.hsleadflows.net","https://cdnjs.cloudflare.com","https://code.jquery.com","https://www.googletagmanager.com","https://www.google.com","https://www.gstatic.com","https://www.recaptcha.net","https://*.doubleclick.net","https://*.google-analytics.com","https://www.googleadservices.com","https://platform.linkedin.com","https://snap.licdn.com","https://*.clarity.ms","https://j.6sc.co","https://*.vidyard.com","https://js.qualified.com","https://js.zi-scripts.com","https://static.oktopost.com","https://okt.to","https://tracking.g2crowd.com","https://tag.unifyintent.com","https://cdn.ketchjs.com","https://global.ketchcdn.com","https://andreasmb.github.io","https://trk.techtarget.com","https://tribl.io","blob:"]FAILCompare script execution posture actual={"hasNonce":false,"hasHash":false,"hasStrictDynamic":false,"hasUnsafeInline":true,"hasUnsafeEval":false,"hasWildcardHost":false,"hasBroadScheme":false,"dangerousSchemes":["blob:"]} expected="constrained script sources without unsafe execution allowances" issue="script-src allows dangerous script schemes: blob:."FAILscript-src allows dangerous script schemes: blob:.Agent Ease of UseGoogle Agentic BrowsingBrowser audit
Accessibility tree is not well-formed
100 Fail
Agent Ease of UseGoogle Agentic BrowsingBrowser audit
Accessibility tree is not well-formed
Check name
Accessibility tree is not well-formed
Score
0/100
Status
fail
Device
desktop
Category
Google Agentic Browsing
Fix guidance
A well-formed [accessibility tree](http://goo.gle/lighthouse-agentic-a11y) helps AI agents to navigate and interact with the page.
Evidence
{
"description": "A well-formed [accessibility tree](http://goo.gle/lighthouse-agentic-a11y) helps AI agents to navigate and interact with the page."
}AccessibilityAccessibilityBrowser audit
Certain ARIA roles must contain particular children
100 Fail
AccessibilityAccessibilityBrowser audit
Certain ARIA roles must contain particular children
Check name
Certain ARIA roles must contain particular children
Score
0/100
Status
fail
Device
desktop
Category
Accessibility
Fix guidance
Certain ARIA roles must contain particular children
Evidence
{
"ruleId": "aria-required-children",
"impact": "critical",
"description": "Ensure elements with an ARIA role that require child roles contain them",
"tags": [
"cat.aria",
"wcag2a",
"wcag131",
"EN-301-549",
"EN-9.1.3.1",
"RGAAv4",
"RGAA-9.3.1"
],
"affectedNodeCount": 1,
"nodes": [
{
"target": [
".bgSlider > .slick-list.draggable[aria-live=\"polite\"] > .slick-track[role=\"listbox\"]"
],
"html": {
"discarded": true,
"reason": "[discarded fetched document data]",
"originalType": "string",
"originalLength": 119
},
"failureSummary": "Fix any of the following:\n Element has children which are not allowed: div[aria-hidden]"
}
]
}Sign in to see 38 other issues and the full report
Create a free account to unlock every issue, evidence details, exports, and higher free limits.
Fix with MCP or CLI
Use this report as the handoff into remediation. Generate a coding-agent prompt with the failing checks attached, or jump to the MCP and CLI setup docs before your next rescan.
Score history