WQI.web​qualityindex
Method v1.1.0 85 live / 86 total factors methodology

/ / d / openai.com

openai.com

59 / 100
overall · band: medium
scanned2026-04-26 23:19:32Z
methodv0.1 — 2026-04-25
verdicts33 pass 2 warn 29 fail 22 n/a
rescan
writes a fresh score to the registry

Categories

Security63/ 100 · 9 measured
Performance50/ 100 · 6 measured
SEO33/ 100 · 6 measured
AI-readiness25/ 100 · 4 measured
Privacy47/ 100 · 6 measured
Accessibility0/ 100 · 1 measured
Brand presence55/ 100 · 16 measured
Email health69/ 100 · 16 measured

Site facts

Snapshot date
2026-04-26
Factors scored
64 / 86
Composite score
59/100
Method version
v0.1 — 2026-04-25

Security· 63/100

#FactorVerdictScoreEvidence
4Security headers (HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy, X-Content-Type-Options)warn70security_headers_score=70, missing=Content-Security-Policy|X-XSS-Protection
5SSL certificate validity & expiration windown/aScoring not yet implemented
6WordPress REST API user enumeration exposurepass100not_wordpress
7Sensitive path exposure (.git, .env, /admin, xmlrpc.php, wp-login.php)pass100total_checked=6
22DNSSEC validationfail0ds_present=false, ad_bit=false
23CAA recordsfail0records=\# 26 00 09 69 73 73 75 65 77 69 6c 64 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67|\# 17 00 05 69 73 73 75 65 61 6d 61 7a 6f 6e 2e 63 6f 6d|\# 45 00 05 69 73 73 75 65 64 69 67 69 63 65 72 74 2e 63 6f 6d 3b 20 63 61 6e 73 69 67 6e 68 74 74 7…
26HSTS preload list inclusionpass100hsts_header=max-age=31536000; includeSubDomains; preload, preload_status=preloaded
27TLS minimum version & cipher suite qualitypass100status=READY, grades=A+, worst=A+
28Subdomain takeover surfacepass100findings={"subdomain":"www.openai.com","cname":"www.openai.com.cdn.cloudflare.net.","dangling":false}|{"subdomain":"blog.openai.com","cname":"d2b532lzynlqb7.cloudfront.net.","dangling":false}|{"subdomain":"staging.openai.com","cname":"staging-openai…
29Spam / phishing blocklist presencefail0listed=true, response_code=0, answers=127.255.255.254

Performance· 50/100

#FactorVerdictScoreEvidence
8Mobile PageSpeed score + Core Web Vitals (LCP, FCP, CLS)n/aScoring not yet implemented
9HTTP/2 supportpass100perf_http2=true
10Compression (Brotli / gzip)pass100perf_compression=br
30HTTP/3 supportfail0supports_h3=false
31IPv6 supportfail0aaaa_count=0
32Image optimization (WebP/AVIF)n/aScoring not yet implemented
33Desktop PageSpeed scoren/aScoring not yet implemented
34Core Web Vitals from CrUX (Real User Monitoring)n/aScoring not yet implemented
35Lazy loading on below-fold imagesn/aScoring not yet implemented
36Font loading strategy (FOUT/FOIT/swap)n/aScoring not yet implemented
37Total homepage byte weightpass100html_bytes=419804, subresource_bytes=0, total_bytes=419804, total_kb=410, sampled=30, total_refs=68
38Largest unused JavaScript bundlefail0deferred_scripts=55, sample=/_next/static/chunks/0do.3qn~oy-5i.js?dpl=dpl_HqEeEckXvAS2soXqR4rFDr7U3gKp|/_next/static/chunks/0i5k~xiheawry.js?dpl=dpl_HqEeEckXvAS2soXqR4rFDr7U3gKp|/_next/static/chunks/0k4ch34rdj0mx.js?dpl=dpl_HqEeEckXvAS2soXqR4rFDr7U3…

SEO· 33/100

#FactorVerdictScoreEvidence
11Title, meta description, OG, Twitter cards, canonicalfail0title=false, description=false, og=false, twitter=false, canonical=false
12Schema.org structured data presencen/aScoring not yet implemented
13H1 tag presencefail0h1_count=0
14Sitemap.xml + robots.txt presencepass100has_robots_txt=true, has_sitemap=true
39Schema.org type validity (parsed JSON-LD)n/aScoring not yet implemented
40Breadcrumb schemafail0present=false
41FAQ / HowTo schema (where applicable)n/an/a — not_applicable
42hreflang for multi-language sitesn/an/a — single_language
43Internal link depth (clicks from homepage to deepest content)pass100max_depth=2, pages_fetched=50, pages_seen=218, capped_at=50
61Better Business Bureau accreditationfail0no_link_on_site

AI-readiness· 25/100

#FactorVerdictScoreEvidence
15llms.txt presencefail0has_llms_txt=false
16AI crawler robots.txt directivespass100robots_ai_blocked_count=0
44AI plugin manifest (.well-known/ai-plugin.json)fail0status=404
45JSON-LD richness score for LLMsfail0org_complete=false, has_address=false, has_contact_point=false, has_same_as=false, has_content_type=false, breakdown={"coreOrg":0,"contact":0,"sameAs":0,"contentType":0}

Privacy· 47/100

#FactorVerdictScoreEvidence
46Cookie banner presence + CMP detectionfail0banner_detected=false
47Privacy policy page presencepass100found=true, href=/policies/privacy-policy/, text=Privacy Policy
48Terms of service page presencepass100found=true, href=/policies/terms-of-use/, text=Terms of Use
49Third-party tracker countpass80count=3, hosts=googletagmanager.com|images.ctfassets.net|static.cloudflareinsights.com
50CCPA "Do Not Sell or Share My Personal Information" linkfail0found=false
51Cookie scan — actual cookies set on first loadfail0count=5, names=country|oai-did|locale|__cf_bm|_cfuvid, with_cmp=false

Accessibility· 0/100

#FactorVerdictScoreEvidence
52Accessibility statement pagefail0found=false
53axe-core / WAVE accessibility scann/aScoring not yet implemented
54Image alt text coveragen/aScoring not yet implemented
55Heading hierarchy validityn/aScoring not yet implemented
56Color contrast (WCAG AA)n/aScoring not yet implemented
57ARIA labels presence and validityn/aScoring not yet implemented
58Skip-to-content linkn/aScoring not yet implemented

Brand presence· 55/100

#FactorVerdictScoreEvidence
17Domain age (RDAP / WHOIS)pass100domain_age_years=19.3
18Wayback Machine site age & last snapshotn/aScoring not yet implemented
19Google Business Profile presence + ratingwarn50found=true
20News mentions in last 30 dayspass85news_mentions_count=20
21Wikipedia entitypass100found=true, title=OpenAI, url=https://en.wikipedia.org/wiki/OpenAI
59Yelp presence + rating + review countfail0no_link_on_site
60Trustpilot presence + ratingfail0no_link_on_site
62LinkedIn Company Page (presence + employee count + follower count)pass100url=https://www.linkedin.com/company/openai
63Bing Placesn/an/a — no_public_url_convention
64Apple Maps presence (Apple Business Connect)fail0no_link_on_site
65Facebook Page presencefail0no_link_on_site
66Instagram presence (link from site → IG profile)pass100url=https://www.instagram.com/openai/
67Web App Manifest (manifest.json)n/aScoring not yet implemented
68Service Worker / PWA capabilityn/aScoring not yet implemented
69Analytics tools detectedpass100tools=Cloudflare Web Analytics, count=1
70Payment processors detectedn/an/a — no_payment_detected
71Marketing automation tools detectedfail0count=0
72Customer support tools detectedfail0count=0
73Tag manager presencepass100tools=Google Tag Manager, count=1
74Ad networks detectedfail40tools=Bing Ads|Facebook Pixel|LinkedIn Insight|Reddit Pixel, count=4
83Visible contact form on sitepass100detected=true, count=1

Email health· 69/100

#FactorVerdictScoreEvidence
1DMARC enforcementpass100present=true, policy=reject
2DKIM signingpass100present=true, selector=google, source=doh_probe
3SPF record present and validpass100present=true, raw="v=spf1 include:_spf.google.com include:spf.protection.outlook.com include:8050860.spf04.hubspotemail.net include:mktomail.com include:spf_c.oraclecloud.com -all", qualifier=hardfail
24MTA-STS & TLS-RPTfail0policy_ok=false
25BIMI + VMCpass100record=v=BIMI1;l=https://openai.com/.well-known/bimi/openai_opco_llc_1462268336.svg;a=https://openai.com/.well-known/bimi/openai_opco_llc_1462268336.pem, logo_url=https://openai.com/.well-known/bimi/openai_opco_llc_1462268336.svg, vmc_url=https://op…
75Branded domain email address (vs free Gmail/Yahoo)pass100branded=true, provider=google
76Email provider class (Workspace / 365 / Zoho / self-hosted / shared)pass100provider=google
77DMARC aggregate reporting enabled (rua=)pass100has_dmarc_reporting=true, audit_flag=true, derived_from_raw=true, source=derived_from_raw, dmarc_raw="v=DMARC1; p=reject; rua=mailto:tdfyvl0n@ag.dmarcian.com; ruf=mailto:tdfyvl0n@fr.dmarcian.com; fo=1; aspf=r"
78Free-email exposure on contact page (gmail/yahoo/outlook visible)pass100Scored
79Newsletter signup form detectedfail0detected=false
80Email Service Provider (ESP) detectedfail0Scored
81Transactional email provider detected (from SPF includes)fail0Scored
82SPF lookup count (10-limit deliverability check)pass100lookups=7, limit=10
84Mailto: direct contact link presentfail0Scored
85Email forwarding service detected (improvmx, forwardemail, etc.)pass100hosts=aspmx.l.google.com|alt1.aspmx.l.google.com|alt3.aspmx.l.google.com|alt2.aspmx.l.google.com|alt4.aspmx.l.google.com, provider=Google Workspace, kind=branded
86Lead magnet / signup incentive detected (free download, ebook, etc.)pass100detected=true, sample=download" href="/chatgpt/download/">Download</a></div></div></div></div></div></article><!--$--><!--/$--></main><footer

Scores are computed under method v0.1 — 2026-04-25. See the methodology for the full factor list and per-factor specifications.