← Back to browse

RetentionGrade — Klaviyo Audit Tool

Get a free, instant audit of your Klaviyo account. Score your email & SMS strategy across 7 dimensions and find exactly what's costing you revenue.

Marketing

Added April 23, 2026 · Last analysed April 23, 2026 · via · 56% unique tagline

StackScope is a free public catalogue of indie launches. We find launches on Product Hunt, Hacker News and similar feeds, then crawl each site to detect its tech stack and score it for launch readiness: DNS, security headers, SEO basics. This page is what we saw on 23 April 2026; the live site may have changed since.

RetentionGrade — Klaviyo Audit Tool is partway there, with complete legal pages and fast page loads. Main gaps: missing several security headers, no sitemap, and tracking cookies set before any opt-in.

Launched on Product Hunt on April 23, 2026. The site is hosted on Vercel, with a domain registered 1 week before launch. The crawl picked up 19 technologies on this site, covering advertising, analytics, seo, and CSS frameworks. The stack includes Next.js, React, and Tailwind CSS.

For context, it's on one of the most common stacks we track, shared by 10,672 launches.

If you own this site, refresh the snapshot and see the full fix list any time →

5.2
StackScope Score
Fair
52/100 Launch Readiness
Partially ready
3/3* Legal
Complete*
1/2 Crawl files
Partial
Vibe Score 10 · Few AI signals
How much the site looks AI-generated. Informational pattern-match signal, not a verdict. Does not feed the StackScope Score. See which fingerprints fired →

Tech Stack (19) · Indie stack

Infrastructure
DNS GoDaddy DNS
Hosting Vercel (2)
Security HSTS (2)
Email
Email marketing Lemlist
Transactional email Resend
Build & Framework
CSS framework Tailwind CSS
Framework React
Meta-framework Next.js (3)
Analytics & Marketing
Advertising Facebook Pixel (2)
Google Ads (2)
Quora Pixel
Reddit Ads (2)
X (Twitter) Ads (2)
Analytics Google Analytics (3)
Zoho PageSense (4)
SEO Google Search Console
LinkedIn (2)
Tag management Google Tag Manager (2)
Business Tools
Sales intelligence Leadsy

Infrastructure

Network
AS16509 · US
DNS
GoDaddy DNS
Authoritative nameserver
DNSSEC
Not enabled
DNS responses unsigned. Cache-poisoning vulnerable.
SSL Certificate
Let's Encrypt
Valid 12 Apr 2026 to 11 Jul 2026
Certificate as captured in this snapshot, not a live check.
Domain Age
3 months
Registered Apr 2026 · GoDaddy.com, LLC

Email Security

SPF Not published. Your domain can be spoofed in phishing emails.
DKIM Detected via known email provider
DMARC p=quarantine Quarantine (moderate)
?
MTA-STS Not deployed. Mail to your domain can be downgraded to plaintext en route.
?
TLS-RPT Not configured. You won't hear about silent SMTP TLS handshake failures.

Storage (24)

Cookies (19)
NameLifetimeDetected as
bcookie 1y LinkedIn
guest_id 1y X (Twitter) Ads
guest_id_ads 1y X (Twitter) Ads
guest_id_marketing 1y X (Twitter) Ads
lidc 1d LinkedIn
li_gc 6mo LinkedIn
muc_ads 1y X (Twitter) Ads
personalization_id 1y X (Twitter) Ads
zabUserId 1y -
zfccn session Zoho PageSense
zft-sdc 21h Zoho PageSense
zps-tgr-dts 1y Zoho PageSense
zsce7cb32f097de449787d6cfb23544c50d < 1h -
_fbp 3mo Facebook Pixel
_ga 1y Google Analytics
_ga_91ZNVKTLK5 1y Google Analytics
_gcl_au 3mo Google Ads
_rdt_uuid 3mo Reddit Ads
_twpid 1y X (Twitter) Ads
Local storage (5)
KeySizeDetected as
lastExternalReferrer 5 B -
lastExternalReferrerTime 13 B -
zps-ft-details 475 B Zoho PageSense
zps-ft-pghitType-details 358 B Zoho PageSense
_gcl_ls 152 B Google Ads

Readiness Breakdown How?

Custom title and meta description
Responsive viewport meta tag
Semantic HTML (nav, main, article)
- Open Graph tags (title, image, description)
- Canonical URL declared
- Twitter card meta tags
- Favicon present

Vibe Score Breakdown How?

SignalPoints
AI copy signals +5
AI writing signals +5

This score is based on structural patterns and is not definitive. Many legitimate sites may trigger signals, and AI-built sites may go undetected. It should be treated as an indicator, not a verdict.

AI Stance

No AI stance declared
llms.txt published
No AI bots blocked in robots.txt
? No directive declared
? None advertised

Well-Known Files

robots.txt
sitemap.xml
security.txt
llms.txt
ads.txt
humans.txt
Privacy Policy
/privacy
Terms of Service
/terms
? Consent manager not detected
Analytics set tracking cookies on our visit, with no opt-in step.
90% unique

Security Headers (1/6)

Permissions-Policy experimental (check browser support)
X-XSS-Protection deprecated (use Content-Security-Policy)

Performance

55ms response time
Faster than 99% of sites
12 third-party domains loaded

Build

Code splitting
25 JS files
1 CSS files
12 Third-party domains

Brand Colours

Something not look right? If a technology shown here is wrong or out of date, email [email protected] and we'll review it.