Infrastructure
DNSSEC
Not enabled
DNS responses unsigned. Cache-poisoning vulnerable.
SSL Certificate
Google Trust Services
Valid 27 Feb 2026 to 28 May 2026
Certificate as captured in this snapshot, not a live check.
Domain Age
5.8 years
Registered Oct 2020 · Cloudflare, Inc.
Email Security
✓
SPF -all (via apex beehiiv.com)
Strict (-all). Strong.
✓
DKIM (via apex beehiiv.com)
Detected on apex beehiiv.com
✓
DMARC p=reject (via apex beehiiv.com)
Reject (strict). Strong.
?
MTA-STS
Not deployed. Mail to your domain can be downgraded to plaintext en route.
?
TLS-RPT
Not configured. You won't hear about silent SMTP TLS handshake failures.
Storage (19)
Cookies (10)
| Name | Lifetime | Detected as |
| cf_clearance |
12mo |
Cloudflare |
| language |
29d |
- |
| last_resource_guid |
23h |
- |
| page_view |
< 1h |
- |
| pxcts |
session |
PerimeterX |
| visit_token |
< 1h |
- |
| _px3 |
< 1h |
PerimeterX |
| _pxvid |
12mo |
PerimeterX |
| __birdie_snippet_status |
< 1h |
Birdie |
| __cf_bm |
< 1h |
Cloudflare |
Local storage (4)
| Key | Size | Detected as |
| beehiiv_anonymous_user_id |
36 B |
Beehiiv |
| PXeBumDLwe_px-ff |
156 B |
PerimeterX |
| PXeBumDLwe_px_hvd |
32 B |
PerimeterX |
| timeOption.is24hClock |
5 B |
- |
Session storage (5)
| Key | Size | Detected as |
| PXeBumDLwe_pxtiming |
0 B |
PerimeterX |
| PXeBumDLwe_px_c_p_PXeBumDLwe |
1 B |
PerimeterX |
| PXeBumDLwe_px_nfsp |
1 B |
PerimeterX |
| pxsid |
36 B |
PerimeterX |
| zestSession |
36 B |
- |
Readiness Breakdown How?
✓
Custom title and meta description
✓
Open Graph tags (title, image, description)
✓
Twitter card meta tags
✓
Canonical URL declared
✓
Responsive viewport meta tag
✓
Favicon present
✓
Semantic HTML (nav, main, article)
⚠
Meta description is 198 characters (advisory)
Google only shows about 155–160 characters of the description in desktop search results (less on mobile); anything past that won't appear.
Vibe Score Breakdown How?
| Signal | Points |
| AI writing signals |
+5 |
This score is based on structural patterns and is not definitive. Many legitimate sites may trigger signals, and AI-built sites may go undetected. It should be treated as an indicator, not a verdict.