Back to Brutally.ai

Someone scored 3.2/10 on their Website Audit

Brutally honest AI feedback — 3.2/10 is a wake-up call. See exactly what went wrong and how to fix it.

3.2/10
Brutal Score
Website Analysis — Brutal Reality Framework™

Your Brutal Score

3.2/ 10Needs Major Work

"Your website is a high-performance ghost town: technically fast but utterly failing to attract, convert, or secure visitors, demanding a full strategic overhaul."

Share your score— let others see the truth

Share privately with a partner, co-founder, or colleague

Score Breakdown

Viability3.0
Execution3.5
Market Reality4.0
Self-Awareness3.0
Brutal Truth3.2

Reality Check

What is actually true

Your website, resolu.app, is technically sound in terms of raw performance, but critically deficient in nearly every other aspect that drives discoverability, user experience, and conversion. The SiteReveal scan shows an overall score of 23/100, which is a stark indicator of fundamental issues. While the site loads fast, it fails to communicate its value, guide users, or establish trust effectively. This isn't a minor tweak situation; it requires a strategic overhaul to become a viable digital asset for your SaaS.

Specifically, your Conversion score is a dismal 10/100, meaning the site is actively failing to turn visitors into leads or customers. Your Content Signals score of 30/100 indicates that even if people land on your site, the content is poorly structured and inaccessible, making it difficult for them to understand what you offer or how to use it. The Security score of 25/100 is a major red flag, exposing you and your users to unnecessary risks and eroding trust before it can even be built. This isn't just about aesthetics; these are foundational flaws that will prevent any meaningful growth.

Delusion Detector

Where you may be fooling yourself

You might be operating under the delusion that a fast-loading website is sufficient for success, or that your product's inherent value will overcome a poor digital presence. The 100/100 Technical Performance score is a false positive for overall health; it's like having a perfectly tuned engine in a car with no steering wheel, no seats, and no brakes. The belief that users will 'figure it out' or overlook glaring security and usability issues is a dangerous one. You're also likely underestimating the impact of missing SEO fundamentals; without them, your target audience simply won't find you, regardless of how good your product might be. The absence of basic conversion elements suggests a lack of understanding of how modern websites guide user journeys, or perhaps a hope that users will instinctively know what to do next without clear calls to action.

Risk Report

What could go wrong and how to mitigate it

The most immediate risk is continued obscurity and zero conversion. Without proper SEO foundations (score 55/100), your site will remain invisible to organic search, forcing you into expensive paid acquisition channels that will yield poor ROI due to the site's low conversion rate. The 25/100 Security score, specifically the lack of HSTS and CSP, exposes your users to potential man-in-the-middle attacks and cross-site scripting (XSS), which could lead to data breaches, reputational damage, and legal liabilities. The absence of ARIA labels (Content Signals 30/100) means you're alienating a significant portion of potential users with accessibility needs, limiting your market reach and potentially inviting compliance issues. Furthermore, the lack of structured data and an XML sitemap means search engines are struggling to understand and index your content, hindering future growth.

What Works

Genuine strengths to build on

The single, undeniable strength of resolu.app is its Technical Performance, scoring a perfect 100/100. This is genuinely excellent and means your site loads quickly and efficiently, which is a critical foundation for user experience and search engine ranking. The use of a CDN (Cloudflare, Fastly) is a smart choice that contributes to this speed. Additionally, the site correctly uses HTTPS with a valid TLS certificate and enforces it across all traffic, which is a basic but essential security measure. Your title tag is also present and within the optimal character range. These elements confirm that the site's underlying infrastructure is robust and well-configured, providing a strong base upon which to build the necessary strategic and content improvements.

The Fix

Practical steps to improve

Your website is a high-performance engine without a body or a driver. The immediate priority is to build out the core components that make a website discoverable, trustworthy, and convertible.

  1. Highest Impact First: Address Conversion (10/100) and Security (25/100) Simultaneously. Your site is currently a leaky bucket. Start by implementing clear, compelling Calls-to-Action (CTAs) on every relevant page, guiding users toward your desired outcome (e.g., 'Start Free Trial,' 'Book a Demo,' 'Learn More'). Simultaneously, implement HTTP Strict Transport Security (HSTS) and a Content Security Policy (CSP) to drastically improve your security posture and build user trust. Without these, every other effort is compromised.

  2. SEO Foundations Overhaul: Your Meta description is missing, and you lack a Canonical URL and XML sitemap. For the homepage, craft a compelling meta description (50-160 characters) that clearly states what Resolu does and its primary benefit. For example: "Resolu: Streamline your project management with AI-powered insights. Boost team productivity and hit deadlines with intelligent task automation." Implement canonical tags on all pages to prevent duplicate content issues. Generate and submit an sitemap.xml to Google Search Console to ensure all your pages are discoverable.

  3. Content Structure and Accessibility: Your Content Signals score of 30/100 is unacceptable. Every page needs a single, descriptive H1 heading. Review your current content and identify the main topic of each page, then create a concise H1. For example, if your homepage is about your core offering, the H1 should be something like "AI-Powered Project Management for Modern Teams." Beyond H1s, use semantic HTML (H2s, H3s, paragraphs, lists) to break up content. Crucially, add ARIA labels to all interactive elements (buttons, links, forms) to make your site accessible to screen reader users. This is not optional; it's a requirement for a professional web presence.

  4. Modernize and Secure Headers: Your Tech Modernity score is 60/100, and Security is 25/100. While not a critical blocker, the lack of a modern framework can hinder future development. More importantly, implement the X-Frame-Options header to prevent clickjacking attacks. This is a quick win for security. Consider using a tool like securityheaders.com to check and implement best practices for HTTP security headers.

  5. Structured Data Implementation: Your site lacks Structured Data (Schema.org). For a SaaS product, implementing 'Organization' schema on your homepage and 'Product' schema for your service offerings will significantly improve how search engines understand and display your content in search results, potentially leading to rich snippets and higher click-through rates. Use Google's Structured Data Markup Helper to generate the JSON-LD code.

This analysis was powered by SiteReveal.ai. For a full deep-dive report including Core Web Vitals, competitor benchmarking, and a full SEO audit, visit SiteReveal.ai — it's free.

AI-generated analysis. This evaluation is produced by an AI and is intended for informational purposes only. It is not a substitute for professional legal, financial, medical, or career advice. Always consult a qualified professional before making significant decisions.

Use as one input among many. Scores, ratings, and recommendations are AI-generated opinions — not guarantees of outcomes. The quality of this analysis depends on the detail and accuracy of the information you provided.

Want to build your own AI-powered product? Try Manus — the AI agent that builds real things. It's the AI platform we used to build Brutally.ai.

Continue the Conversation

Debate, dig deeper, or build a plan together

resolu.app

Understood. You've provided resolu.app again.

As I outlined in my initial assessment, your website scored a 3.2/10. While technically fast, it's critically underdeveloped in areas like conversion, content, and security.

My previous analysis highlighted specific issues and offered a 5-point plan to address them, focusing on:

  1. Conversion & Security: Implementing CTAs, HSTS, and CSP.
  2. SEO Foundations: Adding meta descriptions, canonical URLs, and an XML sitemap.
  3. Content Structure & Accessibility: Using H1s, semantic HTML, and ARIA labels.
  4. Modernizing Headers: Implementing X-Frame-Options.
  5. Structured Data: Adding Schema.org for Organization and Product.

What specific aspect of the previous evaluation would you like to discuss further? Are you looking for a deeper dive into one of the suggested fixes, or do you have a different question about your website's performance or strategy?

all of them

Alright, "all of them" it is. This is where we roll up our sleeves. We're going to break down each of those five points into actionable steps, providing you with the detail you'd expect from a paid consultant.

Let's start with the highest impact areas.

1. Highest Impact First: Address Conversion (10/100) and Security (25/100) Simultaneously.

This is about stopping the bleeding and giving your visitors a clear path.

Conversion: Clear, Compelling Calls-to-Action (CTAs)

Your current site is a brochure without a "buy now" button. We need to define what you want users to do and then make it impossible for them to miss that instruction.

Actionable Steps:

  • Define Your Primary Conversion Goal: For a SaaS, this is usually "Start Free Trial," "Book a Demo," or "Sign Up." Pick ONE primary goal for your homepage.
  • Homepage Primary CTA:
    • Placement: This needs to be above the fold (visible without scrolling) and prominent. A good place is in your hero section (the main banner at the top) and repeated in your navigation bar.
    • Wording: Make it benefit-oriented and action-oriented. Instead of just "Sign Up," consider:
      • "Start Your Free 14-Day Trial"
      • "Boost Productivity – Get Started Free"
      • "Schedule a Demo to See Resolu in Action"
    • Visuals: Make it a button, not just a link. Use a contrasting color that stands out from the rest of your site's palette.
  • Secondary CTAs (Strategic Placement):
    • As users scroll down the homepage, they need more opportunities. After explaining a key feature or benefit, add another CTA. This could be the primary CTA again, or a softer one like "Learn More About [Feature]" that leads to a dedicated features page.
    • Example for a feature section:
      • Headline: "AI-Powered Task Prioritization"
      • Body: "Resolu's intelligent algorithms analyze your workload and deadlines to suggest the most impactful tasks, ensuring your team focuses on what truly matters."
      • CTA: "See How AI Prioritizes Your Work" (links to a dedicated AI features page) or "Start Free Trial" (if you want to push directly to conversion).
  • Dedicated Conversion Pages:
    • Pricing Page: If you have one, ensure it has clear CTAs for each tier.
    • Trial/Signup Page: This page needs to be clean, simple, and free of distractions. Only ask for essential information.
  • Consistency: Use consistent language and design for your CTAs across the entire site. Don't confuse users with too many different calls to action.

Security: HSTS and CSP Implementation

These aren't visible to the user, but they are critical for trust and protection. Your 25/100 security score is a major liability.

Actionable Steps:

  • HTTP Strict Transport Security (HSTS):
    • What it does: HSTS forces browsers to always connect to your site using HTTPS, even if a user types http://. This prevents "man-in-the-middle" attacks where an attacker might try to downgrade your connection to insecure HTTP.
    • How to implement: You add a specific HTTP response header. This is typically done at your web server level (e.g., Nginx, Apache) or via your CDN (like Cloudflare, which you're using).
    • Example Nginx configuration:
      nginx
      add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
    • Example Cloudflare: Go to your Cloudflare dashboard -> SSL/TLS -> Edge Certificates -> "Always Use HTTPS" should be On. Then, under "Strict (SSL/TLS rewriter)", ensure HSTS is enabled and configured. Start with a short max-age (e.g., 300 seconds) for testing, then increase it.
    • Preload: Once you're confident it's working, consider submitting your domain to the HSTS preload list (hsts.badssl.com/preload). This tells browsers to never try HTTP for your domain, even on the first visit.
  • Content Security Policy (CSP):
    • What it does: CSP is a powerful security measure that helps prevent Cross-Site Scripting (XSS) and other code injection attacks. It tells the browser exactly which sources are allowed to load content (scripts, styles, images, fonts, etc.) on your page.
    • How to implement: Also an HTTP response header. It can be complex to set up initially because you need to list every legitimate source of content.
    • Example CSP header (simplified): 
      Content-Security-Policy: default-src 'self'; script-src 'self' https://cdn.example.com; style-src 'self' 'unsafe-inline'; img-src 'self' data:;
      • default-src 'self': Only allow resources from your own domain by default.
      • script-src 'self' https://cdn.example.com: Allow scripts from your domain and a specific CDN.
      • style-src 'self' 'unsafe-inline': Allow styles from your domain and inline styles (often needed for frameworks, but 'unsafe-inline' should be avoided if possible).
      • img-src 'self' data:: Allow images from your domain and data URIs.
    • Implementation Strategy:
      1. Audit: Use browser developer tools (Network tab) to see all the resources your site loads and their origins.
      2. Start with Report-Only: Implement CSP in "report-only" mode first. This will send violation reports to a specified URL without blocking anything, allowing you to fine-tune your policy. 
        Content-Security-Policy-Report-Only: default-src 'self'; report-uri https://your-reporting-endpoint.com/csp-reports;
      3. Refine and Enforce: Once you've collected enough reports and are confident your policy covers all legitimate resources, switch to enforcement mode (Content-Security-Policy).
    • Tools: Use browser extensions or online CSP generators to help you build your policy.

2. SEO Foundations Overhaul:

Your site is currently invisible to search engines. This is about making it discoverable.

Actionable Steps:

  • Meta Description:
    • What it is: A short summary (50-160 characters) of your page's content that appears under your title in search results. It doesn't directly impact ranking but hugely impacts click-through rate.
    • How to write it: Be concise, compelling, and include relevant keywords. Highlight your unique selling proposition.
    • Example for resolu.app homepage:
      html
      <meta name="description" content="Resolu: AI-powered project management for modern teams. Streamline tasks, boost productivity, and hit deadlines with intelligent automation and insights. Start your free trial today!">
    • Implementation: Add this meta tag within the <head> section of your HTML. If you're using a CMS or framework, there's usually a setting for this.
  • Canonical URL:
    • What it is: A rel="canonical" tag tells search engines which version of a page is the "master" version, preventing duplicate content issues (e.g., www.resolu.app vs. resolu.app, or pages with tracking parameters).
    • How to implement: For your homepage, ensure it points to the preferred version.
    • Example:
      html
      <link rel="canonical" href="https://www.resolu.app/">
      (or https://resolu.app/ if you prefer the non-www version)
    • Consistency: Every page on your site should have a canonical tag pointing to its own preferred URL.
  • XML Sitemap:
    • What it is: A file that lists all the important pages on your website, making it easier for search engines to crawl and index your content.
    • How to generate:
      • If you're using a static site generator or a simple HTML site, you might need to create it manually or use an online sitemap generator.
      • If you have a CMS (like WordPress, but you don't seem to), plugins automate this.
      • For a custom app, your framework might have a sitemap generation feature, or you'll need to script it.
    • Content: Include all pages you want indexed. Exclude pages like login, privacy policy (unless you want it indexed), etc., if they don't offer unique value for search.
    • Placement: Usually sitemap.xml at the root of your domain (e.g., https://resolu.app/sitemap.xml).
    • Submission: Once created, submit it to Google Search Console (and Bing Webmaster Tools). This explicitly tells search engines where to find your important pages.

3. Content Structure and Accessibility:

Your content is currently a wall of text for both humans and machines. We need to organize it.

Actionable Steps:

  • Single, Descriptive H1 Heading per Page:
    • What it is: The main title of your page. It's the most important heading for SEO and user comprehension. There should only be ONE <h1> tag per page.
    • How to write it: Clearly state the primary topic or value proposition of the page. Use keywords naturally.
    • Example for resolu.app homepage:
      html
      <h1>AI-Powered Project Management for Modern Teams</h1>
      Or:
      html
      <h1>Resolu: Streamline Your Projects with Intelligent Automation</h1>
    • Implementation: Ensure your main headline on the homepage is wrapped in an <h1> tag. Do this for every page on your site.
  • Semantic HTML (H2s, H3s, Paragraphs, Lists):
    • What it is: Using HTML tags (<h2>, <h3>, <p>, <ul>, <ol>, <li>) to structure your content logically, like an outline. This improves readability for users and helps search engines understand your content hierarchy.
    • How to do it:
      • Break up long blocks of text into shorter paragraphs (<p>).
      • Use <h2> for major sections or sub-topics under your <h1>.
      • Use <h3> for sub-sections under your <h2>.
      • Use <ul> (unordered list) or <ol> (ordered list) for bullet points or numbered steps.
    • Example structure:
      html
      <h1>AI-Powered Project Management for Modern Teams</h1>
<p>Your introductory paragraph about Resolu's core value.</p>

<h2>Key Features That Drive Productivity</h2>
<h3>Intelligent Task Prioritization</h3>
<p>Details about how AI helps prioritize tasks.</p>
<ul>
    <li>Benefit 1</li>
    <li>Benefit 2</li>
</ul>

<h3>Automated Workflow Creation</h3>
<p>Explanation of automated workflows.</p>

<h2>Why Choose Resolu?</h2>
<p>Summary of your unique selling points.</p>
  • ARIA Labels for Accessibility:
    • What it is: Accessible Rich Internet Applications (ARIA) attributes provide additional semantic meaning to HTML elements, especially for interactive components, that screen readers can interpret. This is crucial for users with disabilities.
    • How to use it: Add aria-label or aria-labelledby to elements that might not have sufficient context for screen readers.
    • Examples:
      • Buttons: If a button just has an icon, give it an aria-label.
        html
        <button aria-label="Search"></button>
        If a button says "Read More" but its context isn't clear, you might add:
        html
        <a href="/feature-details" aria-label="Read more about AI-powered task prioritization">Read More</a>
      • Form Fields: Ensure all input fields have associated <label> tags. If not, use aria-label.
        html
        <input type="text" aria-label="Your Name">
      • Navigation:
        html
        <nav aria-label="Main navigation">
    <ul>
        <li><a href="/">Home</a></li>
        <li><a href="/features">Features</a></li>
    </ul>
</nav>
    • Implementation: This requires a thorough audit of your interactive elements. Use browser accessibility tools (e.g., Lighthouse in Chrome DevTools) to identify missing ARIA attributes.

4. Modernize and Secure Headers:

This is about hardening your site against common attacks.

Actionable Steps:

  • X-Frame-Options Header:
    • What it does: Prevents your site from being embedded in an <iframe> on another site, which can protect against clickjacking attacks (where an attacker overlays your site with malicious content).
    • How to implement: Add an HTTP response header.
    • Example: 
      X-Frame-Options: DENY
      • DENY: No domain can frame your content.
      • SAMEORIGIN: Only your own domain can frame your content.
    • Implementation: Like HSTS, this is typically configured at the web server or CDN level.
  • Other Recommended Security Headers (Quick Wins):
    • X-Content-Type-Options: nosniff: Prevents browsers from "sniffing" the content type and overriding the declared Content-Type header, which can mitigate MIME-sniffing attacks.
    • Referrer-Policy: no-referrer-when-downgrade (or stricter): Controls how much referrer information is sent with requests, enhancing user privacy.
    • Permissions-Policy (formerly Feature-Policy): Allows you to selectively enable or disable browser features (e.g., camera, microphone) for your site and embedded content.
  • Tools for Checking Headers:
    • Use securityheaders.com to scan your site and get a detailed report on your current HTTP security headers and recommendations for improvement. This is an excellent resource.

5. Structured Data Implementation:

This helps search engines understand the meaning of your content, not just the words.

Actionable Steps:

  • Schema.org for 'Organization':
    • What it is: Tells search engines who you are as a business (your name, logo, contact info, social profiles). This can help with knowledge panel displays and local search.
    • How to implement: Add JSON-LD (JavaScript Object Notation for Linked Data) script to the <head> or <body> of your homepage.
    • Example:
      html
      <script type="application/ld+json">
{
  "@context": "https://schema.org",
  "@type": "Organization",
  "name": "Resolu",
  "url": "https://resolu.app/",
  "logo": "https://resolu.app/images/resolu-logo.png",
  "contactPoint": {
    "@type": "ContactPoint",
    "telephone": "+1-555-123-4567", // Replace with your actual number
    "contactType": "Customer Service"
  },
  "sameAs": [
    "https://twitter.com/your-resolu-handle", // Replace with your actual social media links
    "https://linkedin.com/company/your-resolu-company"
  ]
}
</script>
  • Schema.org for 'Product' (or 'SoftwareApplication'):
    • What it is: Describes your SaaS product (name, description, pricing, reviews). This is crucial for rich snippets in search results, which can significantly increase click-through rates.
    • How to implement: Add JSON-LD to your homepage or a dedicated product/features page.
    • Example (simplified):
      html
      <script type="application/ld+json">
{
  "@context": "https://schema.org",
  "@type": "SoftwareApplication", // Or "Product" if you prefer
  "name": "Resolu AI Project Management",
  "applicationCategory": "BusinessApplication",
  "operatingSystem": "Web",
  "aggregateRating": { // If you have reviews
    "@type": "AggregateRating",
    "ratingValue": "4.8",
    "reviewCount": "120"
  },
  "offers": {
    "@type": "Offer",
    "priceCurrency": "USD",
    "price": "29.00", // Or "0.00" for free trial, or a range
    "availability": "https://schema.org/InStock"
  },
  "description": "AI-powered project management software to streamline tasks, enhance team collaboration, and ensure on-time project delivery.",
  "url": "https://resolu.app/"
}
</script>
  • Tools for Testing Structured Data:
    • Use Google's Rich Results Test to validate your structured data and see if it's eligible for rich snippets.
    • Use Google's Schema Markup Validator to check the syntax of your JSON-LD.

This is a comprehensive roadmap. It's not a quick fix, but each of these steps directly addresses a critical weakness in your current setup.

To help you prioritize and execute, which of these areas feels most daunting, or where would you like me to draft a more specific example or step-by-step guide? For instance, would you like me to draft a more complete example of a homepage layout with these elements, or walk you through the precise steps to configure HSTS on Cloudflare?

Share this evaluation

Questions worth asking about this evaluation

These are the follow-up questions that would go deepest on this specific result. Sign up free to ask them.

👆 Click any question to get your own brutal answer — free, no account needed to start

Think you can score higher?

Submit your own idea, decision, or question and get a brutally honest AI evaluation in seconds. No sugar-coating.

Free to try · No account required to start