Run 1 summary

https://nvkgoudsmederij.nl/

Tested 2026-06-18 13:55:22 using Chrome 149.0.7827.53 (runtime settings)

SummaryWaterfall MetricsVideoFilmstrip CoachPageXrayThird partyScreenshots

Summary

LCP148 ms
CLS0.652
Coach74
Loading & responsiveness
TTFB
16 ms
First Paint
148 ms
Fully Loaded
1.663 s
Total Blocking Time
156 ms
Max Potential FID
113 ms
Page weight & requests
Total transfer size
7.1 MB
Requests
42
CPU
CPU long tasks
5
CPU last long task at
1.096 s
Visual progress
First Visual Change
233 ms
Speed Index
686 ms
Visual Complete 85%
1.066 s
Visual Complete 99%
1.066 s
Last Visual Change
1.066 s
Screenshot
Waterfall | Download HAR | 

Waterfall

First paintFCPLCPDOMContentLoadedDOM interactiveLoadRender-blockingRedirectError

Video

Run 1
Download video

Filmstrip

11 frames

Use --filmstrip.showAll to show all filmstrips.

0 s
0.2 sCPU Long Task duration 62 msFirst Contentful Paint 148 msLCP <IMG> 148 ms
0.3 sLayout Shift 0.65185 229 msFirst Visual Change 233 msCPU Long Task duration 70 ms
0.4 sDOM Content Loaded Time 304 msCPU Long Task duration 113 ms
0.5 s
0.6 sCPU Long Task duration 110 ms
0.7 s
0.8 s
0.9 sPage Load Time 812 ms
1 s
1.1 sLast Visual Change 1.066 sVisual Complete 85% 1.066 sVisual Complete 95% 1.066 sVisual Complete 99% 1.066 sCPU Long Task duration 63 ms
Performance advice | Best practice advice | Privacy advice | Page info | Technologies | 

Coach

The coach helps you find performance problems on your web page using web performance best practice rules. And gives you advice on privacy and best practices. Tested using Coach-core version 9.2.1.

Performance advice

74
2 errors12 warnings4 info
warn(0)Avoid using Google Tag Manager.googleTagManager

The page is using Google Tag Manager, this is a performance risk since non-tech users can add JavaScript to your page.

Google Tag Manager makes it possible for non tech users to add scripts to your page that will downgrade performance.

warn(0)Avoid CPU Long TaskslongTasks

The page has 5 CPU long tasks with the total of 418 ms. The total blocking time is 156 ms and 1 long task before first contentful paint with total time of 62 ms. However the CPU Long Task is depending on the computer/phones actual CPU speed, so you should measure this on the same type of the device that your user is using. Use Geckoprofiler for Firefox or Chromes tracelog to debug your long tasks.

Long CPU tasks locks the thread. To the user this is commonly visible as a "locked up" page where the browser is unable to respond to user input; this is a major source of bad user experience on the web today. However the CPU Long Task is depending on the computer/phones actual CPU speed, so you should measure this on the same type of the device that your user is using. To debug you should use the Chrome timeline log and drag/drop it into devtools or use Firefox Geckoprofiler.

Offenders
  • self
  • self
  • self
  • cross-origin-descendant
  • cross-origin-descendant
warn(0)Serve images in modern formats (AVIF, WebP)modernImageFormats

The page ships 18 images (out of 18) in JPEG/PNG/GIF without a modern alternative. Wrap them in a <picture> with a <source type="image/avif"> or "image/webp" before the legacy <img>, or serve modern formats from your image pipeline directly. AVIF and WebP usually deliver 25–50% smaller files at the same quality.

AVIF and WebP routinely deliver 25–50% smaller files than JPEG and PNG at the same perceived quality, and every browser version still under support understands at least one of them. Ship modern formats either through a <picture> element with <source type="image/avif"> / "image/webp" entries in front of the legacy <img>, or directly from a content-negotiating image pipeline that returns AVIF / WebP when the client accepts it. https://web.dev/articles/serve-images-webp

Offenders
warn(0)Total CSS size shouldn't be too bigcssSize

The total CSS transfer size is 192.7 kB and uncompressed size is 899.4 kB. That is big and the CSS could most probably be smaller.

Delivering a massive amount of CSS to the browser is not the best thing you can do, because it means more work for the browser when parsing the CSS against the HTML and that makes the rendering slower. Try to send only the CSS that is used on that page. And make sure to remove CSS rules when they aren't used anymore.

Offenders
URLTransferContent
https://nvkgoudsmederij.nl/wp-content/litespeed/css/c2a5423d199003218e5dd3545986b9b7.css?ver=419b2143.0 KB780.1 KB
https://fonts.googleapis.com/css2...ogleapis.com/css21.1 KB2.8 KB
https://fonts.googleapis.com/css...oogleapis.com/css758 B8.2 KB
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/preloaders/t2.css316 B331 B
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/sr7.lp.css?ver=7.0.151.1 KB4.2 KB
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/sr7.media.css?ver=7.0.15583 B1.8 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/styles__ltr.css41.4 KB80.9 KB
warn(0)Total JavaScript size shouldn't be too bigjavascriptSize

The total JavaScript transfer size is 1.2 MB and the uncompressed size is 3.3 MB. This is totally crazy! There is really room for improvement here.

A lot of JavaScript often means you are downloading more than you need. How complex is the page and what can the user do on the page? Do you use multiple JavaScript frameworks?

Offenders
URLTransferContent
https://www.googletagmanager.com/gtag/js?id=G-ZE5T6BRJC4159.2 KB466.9 KB
https://nvkgoudsmederij.nl/wp-includes/js/jquery/jquery.min.js29.0 KB85.5 KB
https://www.google.com/recaptcha/api.js?render=6LchWhIkAAAAAOxymdR9BInepoUglL2K7Va_fWwy&ver=3.01.0 KB1.5 KB
https://nvkgoudsmederij.nl/wp-content/litespeed/js/434b60b688d8ab2898ee668929a4ac93.js?ver=419b2261.5 KB926.2 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/recaptcha__en.js375.9 KB874.6 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/recaptcha__en.js375.3 KB874.6 KB
warn(0)Total page size shouldn't be too bigpageSize

The page total transfer size is 7.4 MB, which is more than the coach limit of 3 MB. That is insane and you need to make it smaller.

Avoid having pages that have a transfer size over the wire of more than 3 MB (desktop) and 2 MB (mobile) because heavy pages hurt performance and are expensive for users on metered connections. Reference: HTTP Archive median page weight in 2024 was around 2.7 MB desktop / 2.4 MB mobile, so this rule fires when a page is above the modern median.

Offenders
URLTransferContent
https://nvkgoudsmederij.nl/47.9 KB167.8 KB
https://nvkgoudsmederij.nl/wp-content/litespeed/css/c2a5423d199003218e5dd3545986b9b7.css?ver=419b2143.0 KB780.1 KB
https://fonts.googleapis.com/css2...ogleapis.com/css21.1 KB2.8 KB
https://fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff27.7 KB7.6 KB
https://nvkgoudsmederij.nl/wp-content/themes/betheme/fonts/mfn/icons.woff2?352214871.3 KB70.9 KB
https://nvkgoudsmederij.nl/wp-content/plugins/litespeed-cache/guest.vary.php281 B16 B
https://nvkgoudsmederij.nl/53.1 KB169.4 KB
https://www.googletagmanager.com/gtag/js?id=G-ZE5T6BRJC4159.2 KB466.9 KB
https://fonts.googleapis.com/css...oogleapis.com/css758 B8.2 KB
https://nvkgoudsmederij.nl/wp-includes/js/jquery/jquery.min.js29.0 KB85.5 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2022/10/logo-NvKgoudsmederij-1.png14.0 KB13.9 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2022/10/SMF_2848-1536x1024.jpg223.3 KB223.2 KB
https://themes.muffingroup.com/be/minimal/wp-content/uploads/2016/06/home_minimal_sep4.png591 B82 B
https://nvkgoudsmederij.nl/wp-content/uploads/2023/03/Geelgouden-ring-met-bloedkoraal-2.png771.1 KB770.9 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2025/03/NvK-Goudsmederij-zilveren-collier.png1.5 MB1.5 MB
https://nvkgoudsmederij.nl/wp-content/themes/betheme/images/cookies.png3.2 KB3.2 KB
https://www.google.com/recaptcha/api.js?render=6LchWhIkAAAAAOxymdR9BInepoUglL2K7Va_fWwy&ver=3.01.0 KB1.5 KB
https://nvkgoudsmederij.nl/wp-content/litespeed/js/434b60b688d8ab2898ee668929a4ac93.js?ver=419b2261.5 KB926.2 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2023/07/10072023-3-herinneringsringen-1-300x300.png94.1 KB94.0 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2026/03/NvK-Goudsmederij-geelgoude...aal-5-480x600.png392.0 KB391.9 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2024/10/NvK-Goudsemderij-Gouden-co...and-3-300x300.png124.0 KB123.9 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2025/02/NvK-Goudsmederij-reparatie...ring3-300x300.png118.3 KB118.2 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2022/12/06122022-Witgouden-verlovingsring-300x300.png70.2 KB70.1 KB
https://fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff27.6 KB7.6 KB
https://fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff27.7 KB7.7 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2024/05/NvK-Goudsmederij-platina-t...ant-1-300x300.png136.6 KB136.5 KB
https://fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff27.8 KB7.8 KB
https://fonts.gstatic.com/s/poppins/v24/pxiGyp8kv8JHgFVrJJLucHtA.woff28.5 KB8.5 KB
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/preloaders/t2.css316 B331 B
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/recaptcha__en.js375.9 KB874.6 KB
https://region1.google-analytics.com/g/collect...ics.com/g/collectN/A0 b
https://www.google.com/recaptcha/api2/anchor...ptcha/api2/anchor27.8 KB53.5 KB
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/sr7.lp.css?ver=7.0.151.1 KB4.2 KB
https://nvkgoudsmederij.nl/wp-content/plugins/revslider/public/css/sr7.media.css?ver=7.0.15583 B1.8 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/styles__ltr.css41.4 KB80.9 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/recaptcha__en.js375.3 KB874.6 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2022/10/NvK-Goudsmederij.png2.0 MB2.0 MB
https://www.gstatic.com/recaptcha/api2/logo_48.png2.2 KB2.2 KB
https://fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff239.2 KB39.2 KB
https://nvkgoudsmederij.nl/wp-content/uploads/2022/10/cropped-cropped-logo-NvKgoudsmederij-32x32.png2.3 KB2.2 KB
https://www.google.com/recaptcha/api2/reload?k=6LchWhIkAAAAAOxymdR9BInepoUglL2K7Va_fWwy2.0 KB2.6 KB
https://www.google.com/recaptcha/api2/clr?k=6LchWhIkAAAAAOxymdR9BInepoUglL2K7Va_fWwyN/A0 b
infoAvoid too many fontsfewFonts

The page has 7 font requests. Do you really need them? What value does the fonts give the user?

How many fonts do you need on a page for the user to get the message? Fonts can slow down the rendering of content, try to avoid loading too many of them because worst case it can make the text invisible until they are loaded (FOIT—flash of invisible text), best case they will flicker the text content when they arrive.

Offenders
infoAdd decoding="async" to non-critical imagesdecodingAsync
warn(50)Lazy-load below-the-fold imageslazyLoadingImages

The page has 6 below-the-fold images without loading="lazy". Add loading="lazy" so the browser defers downloading and decoding them until the user scrolls them into view.

Adding loading="lazy" to an <img> tells the browser not to download or decode it until it is close to the viewport. For images that the user may never see (deep in the page, behind a tab, in a footer carousel), this saves bandwidth and main-thread time during initial render. The LCP image and any image in the initial viewport should NOT be lazy-loaded — that delays the first paint. https://developer.mozilla.org/en-US/docs/Web/HTML/Element/img#loading

Offenders
warn(50)Total image size shouldn't be too bigimageSize

The page total image size is 5.7 MB. It's really big. Is the page using the right format for the images? Can they be lazy loaded? Are they compressed as good as they can be? Make them smaller by using https://imageoptim.com/.

Avoid having too many large images on the page. The images will not affect the first paint of the page, but it will eat bandwidth for the user.

warn(60)Don't scale images in the browseravoidScalingImages

The page has 4 images that are scaled more than 100 pixels. It would be better if those images are sent so the browser don't need to scale them.

It's easy to scale images in the browser and make sure they look good in different devices, however that is bad for performance! Scaling images in the browser takes extra CPU time and will hurt performance on mobile. And the user will download extra kilobytes (sometimes megabytes) of data that could be avoided. Don't do that, make sure you create multiple version of the same image server-side and serve the appropriate one.

Offenders
warn(60)Don't use private headers on static contentprivateAssets

The page has 4 requests with private headers. Make sure that the assets really should be private and only used by one user. Otherwise, make it cacheable for everyone.

If you set private headers on content, that means that the content are specific for that user. Static content should be able to be cached and used by everyone. Avoid setting the cache header to private.

Offenders
warn(80)Avoid slowing down the critical rendering pathavoidRenderBlocking

The page has 5 blocking requests and 0 in body parser blocking (2 JavaScript and 3 CSS).

The critical rendering path is what the browser needs to do to start rendering the page. Every file requested inside of the head element will postpone the rendering of the page, because the browser need to do the request. Avoid loading JavaScript synchronously inside of the head (you should not need JavaScript to render the page), request files from the same domain as the main document (to avoid DNS lookups) and inline CSS for really fast rendering and a short rendering path.

Offenders
infoMake each CSS response smalloptimalCssSize

https://nvkgoudsmederij.nl/wp-content/litespeed/css/c2a5423d199003218e5dd3545986b9b7.css?ver=419b2 size is 146.4 kB (146390) and that is bigger than the limit of 25 kB. https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/styles__ltr.css size is 42.4 kB (42381) and that is bigger than the limit of 25 kB. Try to keep each CSS response under 25 kB.

Render-blocking CSS holds up the first paint until it has fully downloaded, parsed and applied, so smaller CSS files mean a faster start. Split your CSS into a small critical bundle inlined or eagerly loaded, with the rest lazy-loaded.

Offenders
URLTransferContent
https://nvkgoudsmederij.nl/wp-content/litespeed/css/c2a5423d199003218e5dd3545986b9b7.css?ver=419b2143.0 KB780.1 KB
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/styles__ltr.css41.4 KB80.9 KB
error(90)Avoid Frontend single point of failuresspof

The page has 1 request inside of the head that can cause a SPOF (single point of failure). Load them asynchronously or move them outside of the document head.

A page can be stopped from loading in the browser if a single JavaScript, CSS, and in some cases a font, couldn't be fetched or is loading really slowly (the white screen of death). That is a scenario you really want to avoid. Never load 3rd-party components synchronously inside of the head tag.

Offenders
warn(90)Avoid extra requests by setting cache headerscacheHeaders

The page has 1 request that are missing a cache time. Configure a cache time so the browser doesn't need to download them every time. It will save 28.5 kB the next access.

The easiest way to make your page fast is to avoid doing requests to the server. Setting a cache header on your server response will tell the browser that it doesn't need to download the asset again during the configured cache time! Always try to set a cache time if the content doesn't change for every request.

Offenders
infoLong cache headers is goodcacheHeadersLong
error(99)Avoid using incorrect mime typesmimeTypes

The page has 1 misconfigured mime type.

It's not a great idea to let browsers guess content types (content sniffing), in some cases it can actually be a security risk.

Offenders

Best practice advice

70
1 error2 warnings2 info
error(0)Cumulative Layout ShiftcumulativeLayoutShift

You have a poor cumulative layout shift score (0.6519). It is in the Google Web Vitals poor range, with a shift higher than 0.25. You should manually check the filmstrip or video and check if it will affect the user.

Cumulative Layout Shift measures the sum total of all individual layout shift scores for unexpected layout shift that occur. The metric is measuring visual stability by quantify how often users experience unexpected layout shifts. It is one of Google Web Vitals.

infoAvoid unnecessary headersunnecessaryHeaders

There are 35 responses that sets both a max-age and expires header. There are 3 responses that sets a pragma no-cache header (that is a request header). There are 42 responses that sets a server header.

Do not send headers that you don't need. We look for p3p, cache-control and max-age, pragma, server and x-frame-options headers. Have a look at Andrew Betts - Headers for Hackers talk as a guide https://www.youtube.com/watch?v=k92ZbrY815c or read https://www.fastly.com/blog/headers-we-dont-want.

Offenders
warn(50)Avoid too many third party requeststhirdParty

The page do 45% requests to third party domains (19 requests and 1.1 MB). First party is 23 requests and 6.3 MB. The regex .*nvkgoudsmederij.* was used to calculate first/third party requests.

Do not load most of your content from third party URLs.

infoGive every image a textual alternativeimageAltText

The page has 3 images without an alt attribute. Add alt="..." with a description, or alt="" if the image is purely decorative.

Every <img> needs an alt attribute. Use alt="meaningful description" for content images so assistive technologies can announce them, or alt="" (or role="presentation" / aria-hidden="true") for purely decorative images so they are skipped. A missing alt attribute leaves screen reader users with no information at all. https://developer.mozilla.org/en-US/docs/Web/HTML/Element/img#alt

Offenders
warn(80)Set a sensible viewport meta tagviewport

The viewport meta tag sets maximum-scale to 1 or less, which prevents the user from zooming in. Remove it.

The viewport meta tag tells the browser how to lay out the page on small screens. Without it (or without width=device-width) the page is rendered at a desktop fallback width and scaled down, which makes text unreadable on mobile. Disabling zoom (user-scalable=no, maximum-scale<=1) is also an accessibility regression. https://developer.mozilla.org/en-US/docs/Web/HTML/Viewport_meta_tag

Privacy advice

46
1 error10 warnings4 info
warn(0)Avoid using Google Analyticsga

The page is using Google Analytics meaning you share your users private information with Google. You should use analytics that care about user privacy, something like https://matomo.org.

Google Analytics share private user information with Google that your user hasn't agreed on sharing.

warn(0)Declare a referrer policy on the documentreferrerPolicy

No <meta name="referrer"> tag was found on the page. Set a Referrer-Policy response header (preferred) or add a meta tag, for example <meta name="referrer" content="strict-origin-when-cross-origin">.

Without an explicit referrer policy the browser falls back to the user-agent default and may leak the full URL of the previous page (including query strings) to every cross-origin request. Set a Referrer-Policy response header (preferred) or a <meta name="referrer"> tag in the document. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy

warn(0)Avoid embedding services from surveillance capitalist companiessurveillance

The page embeds 1 resource from companies that profit from user surveillance. Consider privacy-respecting alternatives.

Embedding scripts or iframes from companies whose business model is surveillance capitalism (Google, Facebook, etc.) leaks detailed user data on every page view, often before the user has had a chance to consent. See https://en.wikipedia.org/wiki/Surveillance_capitalism for background. Prefer privacy-respecting alternatives where possible.

Offenders
infoSet a Cross-Origin-Embedder-Policy header so cross-origin subresources opt in to being embedded.crossOriginEmbedderPolicyHeader

Set a Cross-Origin-Embedder-Policy header (typically require-corp or credentialless) on the document response to control cross-origin embedding.

Cross-Origin-Embedder-Policy (COEP) makes the page refuse to load cross-origin subresources unless they explicitly opt in via CORP or CORS. Together with Cross-Origin-Opener-Policy it puts the page in a cross-origin isolated context, which mitigates cross-window side-channel attacks (Spectre) and unlocks high-resolution timers and SharedArrayBuffer. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Embedder-Policy

Offenders
warn(0)Set a Cross-Origin-Opener-Policy header to isolate the page from cross-origin windows.crossOriginOpenerPolicyHeader

Set a Cross-Origin-Opener-Policy header (typically same-origin) on the document response to isolate the page from cross-origin windows.

Cross-Origin-Opener-Policy (COOP) lets a page sever its window-group ties to cross-origin documents that opened it or that it opens. Together with Cross-Origin-Embedder-Policy it puts the page in a cross-origin isolated context, which mitigates cross-window side-channel attacks (Spectre) and unlocks high-resolution timers and SharedArrayBuffer. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Opener-Policy

Offenders
infoSet a Cross-Origin-Resource-Policy header to limit who may embed the page.crossOriginResourcePolicyHeader

Set a Cross-Origin-Resource-Policy header (same-origin, same-site or cross-origin) on the document response to limit who may embed it.

Cross-Origin-Resource-Policy (CORP) is a per-response opt-in that tells the browser which origins are allowed to embed the resource. It blocks cross-origin or cross-site no-cors embedding (img, script, iframe, etc.) and is one of the building blocks of cross-origin isolation. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Resource-Policy

Offenders
warn(0)Avoid using Google reCAPTCHAgoogleReCaptcha

You share your user data with Google since you use Google reCAPTCHA.

You should avoid using Google reCAPTCHA since it will share your users information with Google.

Offenders
infoSet a NEL header so the browser reports network errors back to you.nelHeader

Set a NEL header (paired with Reporting-Endpoints) to collect connection-level error reports from the field.

The NEL (Network Error Logging) response header tells the browser to record connection-level failures (DNS, TLS, HTTP errors) and ship them to a reporting endpoint. NEL pairs with the Reporting-Endpoints / Report-To header — the page declares the endpoint group and NEL points at it. Together they give you visibility into errors that never reach your origin server. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/NEL

Offenders
warn(0)Set a Permissions-Policy header to control which browser features the page can use.permissionsPolicyHeader

Set a Permissions-Policy header to control which browser features the page can use.

The Permissions-Policy response header (the successor to Feature-Policy) lets a site explicitly opt in or out of powerful browser features such as camera, microphone, geolocation, payment and clipboard. Setting a strict policy reduces the attack surface and limits what embedded third parties can do. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy

Offenders
warn(0)Set a referrer-policy header to make sure you do not leak user information.referrerPolicyHeader

Set a referrer-policy header to make sure you do not leak user information.

Referrer Policy is a new header that allows a site to control how much information the browser includes with navigations away from a document and should be set by all sites. https://scotthelme.co.uk/a-new-security-header-referrer-policy/.

Offenders
infoDeclare reporting endpoints so the browser can deliver Reporting-API events.reportingEndpointsHeader

Set a Reporting-Endpoints header (or the legacy Report-To header) so CSP reports, NEL data and other Reporting-API events have an endpoint to land at.

The Reporting-Endpoints response header (the successor to Report-To) names the URLs that browsers should POST reports to. Without it, CSP report-to directives, Cross-Origin-Opener-Policy reports, NEL data and other Reporting-API events have nowhere to go. The legacy Report-To header is still accepted for older Chromium versions. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Reporting-Endpoints

Offenders
error(0)Set a strict transport header to make sure the user always use HTTPS.strictTransportSecurityHeader

Set a strict transport header to make sure the user always use HTTPS.

The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security.

Offenders
warn(0)Do not share user data with third parties.thirdPartyPrivacy

The page has 43% requests that are 3rd party (18 requests with a size of 1.1 MB). The page also have request to companies that harvest data from users and do not respect users privacy (see https://en.wikipedia.org/wiki/Surveillance_capitalism). The page do 18 surveillance requests and uses 5 surveillance tools. The page do 1 tag-manager request and uses 1 tag-manager tool. The page do 4 utility requests and uses 1 utility tool. The page do 1 analytics request and uses 1 analytics tool.

Using third party requests shares user information with that third party. Please avoid that! The project https://github.com/patrickhulce/third-party-web is used to categorize first/third party requests.

Offenders
warn(0)Set X-Content-Type-Options: nosniff to stop the browser from MIME-sniffing the response.xContentTypeOptionsHeader

Set X-Content-Type-Options: nosniff on the document response to prevent MIME-sniffing.

X-Content-Type-Options: nosniff prevents browsers from interpreting files as a different MIME type than what is declared in the Content-Type header. This blocks a class of cross-site scripting and content-type confusion attacks and should be set on every response. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options

Offenders
warn(70)Use a strict Content-Security-Policy header to mitigate cross-site scripting (XSS) attacks.contentSecurityPolicyHeader

The policy declares no default-src or script-src directive, which means scripts can be loaded from anywhere. Add at least default-src so unknown directive types fall back to a safe value. Set object-src 'none' (or a default-src 'none' fallback) so the page cannot load Flash, plugins or other legacy embeddable content. The policy declares no default-src or script-src directive, which means scripts can be loaded from anywhere. Add at least default-src so unknown directive types fall back to a safe value. Set object-src 'none' (or a default-src 'none' fallback) so the page cannot load Flash, plugins or other legacy embeddable content.

A Content-Security-Policy response header tells the browser which sources of script, style, and other content are allowed. The most effective form is a strict CSP using nonces or hashes together with strict-dynamic; the worst is a missing header, with unsafe-inline and unsafe-eval close behind. https://web.dev/articles/strict-csp

Page info

Page info

TitleHome - NvK Goudsmederij
GeneratorWordPress 7.0
Width1350
Height3883
DOM elements469
Avg DOM depth13
Max DOM depth23
Iframes2
Script tags19
Local storage141 B
Session storage35 B
Network Information API4g

Resource hints

3 hints
dns-prefetch
  • https://fonts.googleapis.com/
preconnect
  • https://fonts.googleapis.com/
  • https://fonts.gstatic.com/

Technologies used to build the page

Data collected using Coach-core version 9.2.1. With updated code from Webappanalyzer 2026-05-04. Use --browsertime.firefox.includeResponseBodies html or --browsertime.chrome.includeResponseBodies html to help Wappalyzer find more information about technologies used.

Detected technologies

8 technologies

Third-party tools

10 tools

Data collected using Third Party Web version 0.29.2.

Cdn
  • Google Fonts
  • Google CDN
Surveillance
  • Google Fonts
  • Google Tag Manager
  • Other Google APIs/SDKs
  • Google CDN
  • Google Analytics
Tag-manager
  • Google Tag Manager
Utility
  • Other Google APIs/SDKs
Analytics
  • Google Analytics
Visual Metrics | Google Web Vitals | Largest Contentful Paint | Cumulative Layout Shift | Browser metrics | Long Aninimation Frames | Metrics from CDP | 

Visual Metrics

Visual progress
Visual progress at 0 s0.0s
Visual progress at 0.2 s0.2s
Visual progress at 0.4 s0.4s
Visual progress at 0.5 s0.5s
Visual progress at 0.7 s0.7s
Visual progress at 0.8 s0.8s
Visual progress at 1 s1.0s
Visual progress at 1.1 s1.1s
FCP0.15s
LCP0.15s
VC851.07s
Long tasks
0.0s0.2s0.4s0.7s0.9s1.1s

Google Web Vitals

Largest Contentful Paint

When the page main content is rendered, collected via the Largest Contentful Paint API. Read more about Largest Contentful Paint.

148 msLCP render time

Phase breakdown

  • TTFB16 ms
  • Resource load delay15 ms
  • Resource load duration43 ms
  • Element render delay74 ms

Element

Element type
<img>
Size (w × h)
164080
URL
https://nvkgoudsmede...848-1536x1024.jpg
Load time
85 ms

DOM path

body > div#Wrapper > div#Content > div > main > div > div > section:eq(1) > div:eq(1) > div:eq(1) > div > div:eq(1) > div > div > div > img
LCP

The LCP element is highlighted in the screenshot. If nothing is highlighted the element was removed before the screenshot or the LCP API couldn't find it.

The Largest Contentful Paint API matched this image:

LCP element

Cumulative Layout Shift

How much the page's content shifts as it loads, collected via the Cumulative Layout Shift API.

0.652cumulative layout shift score

Elements that shifted

Sorted by individual shift score (higher = bigger shift). The top entries usually account for most of the page's CLS.

  • #10.652<div id="Content" role="main"></div>,<div class="menu_wrapper"></div>,<::after></::after>
    body > div#Wrapper > div#Content,body > div#Wrapper > div#Header_wrapper > header#Header > div#Top_bar > div > div > div:eq(0) > div:eq(1),body > div#Wrapper > div#Header_wrapper > header#Header > div#Top_bar > div > div > div:eq(0) > div:eq(1) > nav#menu > ul#menu-main-menu > li#menu-item-129 > a > ::after
Layout shift

Elements that shifted by more than 0.01 are highlighted in the screenshot. If an element shifted outside the viewport, it won't appear here — check the video or filmstrip to see the shift.

Browser Metrics

Navigation Timing

Want render-blocking and recalculate-style metrics for FCP and LCP, plus CPU long tasks? Run with --cpu.

Extra timings

Long Animation Frames

A long animation frame (LOAF) is a frame that took ≥ 50 ms from input to the next paint. The breakdown shows where that time went. Read more about the Long Animation Frames API.

Showing the top 10 longest animation frames.

Long animation frame #1
178.9 ms
  • Blocking63.9 ms
  • Work114.2 ms
  • Render0.8 ms
  • Pre-layout0.1 ms
  • Style & layout0.7 ms

Scripts that ran during this frame

Forced style and layout
0.5 ms
Invoker
https://www.gstatic.com/recaptcha/releases/MerVUtRoajKEbP7pLiGXkL28/recaptcha__en.js
Invoker type
classic-script
Window attribution
self
Long animation frame #2
183 ms
  • Blocking61.3 ms
  • Work121.1 ms
  • Render0.6 ms
  • Pre-layout0.2 ms
  • Style & layout0.4 ms

No script attribution available for this frame.

Long animation frame #3
115.3 ms
  • Blocking21.6 ms
  • Work93 ms
  • Render0.7 ms
  • Pre-layout0.5 ms
  • Style & layout0.2 ms

Scripts that ran during this frame

Forced style and layout
0.8 ms
Invoker
https://nvkgoudsmederij.nl/wp-content/litespeed/js/434b60b688d8ab2898ee668929a4ac93.js?ver=419b2
Invoker type
classic-script
Window attribution
self
Invoker
Promise.resolve
Invoker type
resolve-promise
Window attribution
self
Source char position
403918
Long animation frame #4
81 ms
  • Blocking15.3 ms
  • Work64.2 ms
  • Render1.5 ms
  • Pre-layout0.7 ms
  • Style & layout0.8 ms

No script attribution available for this frame.

Long animation frame #5
74.8 ms
  • Blocking12.4 ms
  • Work62.4 ms
  • Render0 ms
  • Pre-layout0 ms
  • Style & layout0 ms

Scripts that ran during this frame

Invoker
https://www.googletagmanager.com/gtag/js?id=G-ZE5T6BRJC4
Invoker type
classic-script
Window attribution
self
Long animation frame #6
60.7 ms
  • Blocking4.8 ms
  • Work27.7 ms
  • Render28.2 ms
  • Pre-layout24.2 ms
  • Style & layout4 ms

Scripts that ran during this frame

Forced style and layout
2.5 ms
Invoker
FrameRequestCallback
Invoker type
user-callback
Window attribution
self
Source char position
392615
Long animation frame #7
62 ms
  • Blocking0 ms
  • Work45.2 ms
  • Render16.8 ms
  • Pre-layout0 ms
  • Style & layout16.8 ms

Scripts that ran during this frame

Invoker
https://nvkgoudsmederij.nl/wp-includes/js/jquery/jquery.min.js
Invoker type
classic-script
Window attribution
self

Custom metrics collected through JavaScript

There are no custom configured scripts.

Extra metrics collected using scripting

There are no custom extra metrics from scripting.

CDP Performance33
AudioHandlers0
AudioWorkletProcessors0
Documents12
Frames12
JSEventListeners124
LayoutObjects626
MediaKeySessions0
MediaKeys0
Nodes849
Resources93
ContextLifecycleStateObservers28
V8PerContextDatas5
WorkerGlobalScopes1
UACSSResources0
RTCPeerConnections0
ResourceFetchers13
AdSubframes0
DetachedScriptStates5
ArrayBufferContents13
LayoutCount38
RecalcStyleCount116
LayoutDuration24
RecalcStyleDuration47
DevToolsCommandDuration8
ScriptDuration664
V8CompileDuration2
TaskDuration1369
TaskOtherDuration623
ThreadTime1
ProcessTime3
JSHeapUsedSize19478164
JSHeapTotalSize37437440
FirstMeaningfulPaint144
Summary | Largest responses | Per content type | Per domain | Expires & last-modified | After onLoad | Render-blocking | 

PageXray

How the page is built.

HTTP versionHTTP/2.0
Total requests42
Total domains8
Transfer size7.1 MB
Content size10.0 MB
Missing compression0
Cookies20 third-party

Response codes

200
4197.6%
204
12.4%

Requests and sizes per content type

8 types
ContentHeader SizeTransfer SizeContent SizeRequests
html0 b129.0 KB390.7 KB4
css0 b188.2 KB878.3 KB7
javascript0 b1.2 MB3.2 MB6
image0 b5.5 MB5.5 MB15
font0 b149.8 KB149.3 KB7
plain0 b0 b0 b1
json0 b2.0 KB2.6 KB1
other0 b0 b0 b1
Total0 b7.1 MB10.0 MB42

Data per domain

8 domains
DomainTotal download timeTransfer SizeContent SizeRequests
nvkgoudsmederij.nl1.042 s6.1 MB7.6 MB23
fonts.googleapis.com39 ms1.8 KB11.0 KB2
fonts.gstatic.com93 ms78.5 KB78.4 KB6
www.googletagmanager.com56 ms159.2 KB466.9 KB1
themes.muffingroup.com85 ms591 B82 B1
www.google.com174 ms30.8 KB57.6 KB4
www.gstatic.com61 ms794.8 KB1.8 MB4
region1.google-analytics.com164 msN/A0 b1

Expires & last-modified statistics

typeminmedianmax
Expires0 seconds1 year1 year
Last modified0 seconds39 weeks10 years

Requests loaded after onLoad event

3 requests

Includes requests done after load event end.

ContentTransfer SizeRequests
html0 b0
css0 b0
javascript0 b0
image2.3 KB1
font0 b0
favicon0 b0
json2.0 KB1
other0 b1
Total4.3 KB3

Requests loaded after onContentLoad

12 requests

Includes requests done after DOM content loaded.

ContentTransfer SizeRequests
html27.8 KB1
css43.1 KB3
javascript375.3 KB1
image2.0 MB3
font39.2 KB1
favicon0 b0
plain0 b1
json2.0 KB1
other0 b1
Total2.5 MB12

Render blocking requests

20 assets

Render blocking information directly from Chrome.

BlockingIn body parser blockingPotentially blocking
500
Categories | Tools | First vs third | 

Third party

Third party requests categorised by Third party web version 0.29.2.

Third-party requests36
Tools5
Categories5

Categories

5 categories
survelliance
50% · 18 req · 5 tools
cdn
33% · 12 req · 2 tools
utility
11% · 4 req · 1 tool
tag-manager
2.8% · 1 req · 1 tool
analytics
2.8% · 1 req · 1 tool

Third party requests and tools

5 categories
cdnGoogle FontsGoogle CDN12 requests · 2 tools
survellianceGoogle FontsGoogle Tag ManagerOther Google APIs/SDKs+ 2 more18 requests · 5 tools
tag-managerGoogle Tag Manager1 requests · 1 tool
utilityOther Google APIs/SDKs4 requests · 1 tool
analyticsGoogle Analytics1 requests · 1 tool

Unmatched third party domains

1 domain

Domains that didn't match any tool in Third party web. If you are sure they are third party domains, please do a PR to that project. You can also fine tune the list using --firstParty.

  • themes.muffingroup.com

First party requests and sizes per content type

23 requests

Calculated using .*nvkgoudsmederij.* (use --firstParty to configure).

ContentHeader SizeTransfer SizeContent SizeRequests
html0 b101.2 KB337.2 KB3
css0 b145.0 KB786.4 KB4
javascript0 b290.5 KB1011.7 KB2
image0 b5.5 MB5.5 MB13
font0 b71.3 KB70.9 KB1
favicon0 b0 b0 b0
TotalN/A6.1 MB7.6 MB23

Third party requests and sizes per content type

19 requests
ContentHeader SizeTransfer SizeContent SizeRequests
html0 b27.8 KB53.5 KB1
css0 b43.2 KB92.0 KB3
javascript0 b911.5 KB2.2 MB4
image0 b2.8 KB2.3 KB2
font0 b78.5 KB78.4 KB6
favicon0 b0 b0 b0
plain0 b0 b0 b1
json0 b2.0 KB2.6 KB1
other0 b0 b0 b1
TotalN/A1.0 MB2.4 MB19
afterPageCompleteCheck.png | layoutShift.png | largestContentfulPaint.png | 

Screenshots