Launch Readiness Check Where to submit your launch

← Back to browse

MiniCFO.io

Track income & expenses, forecast cash flow, scan receipts, and get AI-powered insights. Built for small business owners who aren't accountants.

Finance

www.minicfo.io · Added June 24, 2026 · Last analysed June 24, 2026 · via · 60% unique tagline

Own this Launch?
Screenshot of MiniCFO.io

StackScope is a free public catalogue of indie launches. We find launches on Product Hunt, Hacker News and similar feeds, then crawl each site to detect its tech stack and score it for launch readiness: DNS, security headers, SEO basics. This page is what we saw on 24 June 2026; the live site may have changed since.

MiniCFO.io ships with the basics, with a thorough launch checklist. What needs work: missing several security headers, incomplete legal pages, and no robots.txt.

Launched on Product Hunt on June 24, 2026. The site is hosted on Squarespace in the United States. We've detected 14 technologies on this site, covering AI builders, analytics, CDN, and cloud. The stack includes Tailwind CSS, Amazon Web Services, and AWS CloudFront.

It's running the same core stack as 199 other launches.

If you own this site, refresh the snapshot and see the full fix list any time →

5.1
StackScope Score
Fair
100/100 Launch Readiness
Launch ready
0/6 Security Headers
Poor
2/3 Legal
Partial
1/2 Web Standards
Partial
66/100 Performance
Fair
Vibe Score 18 · Few AI signals
Informational pattern-match signal. Does not feed the StackScope Score. See which fingerprints fired →

Tech Stack (14) · Scale-up stack

Infrastructure
CDN AWS CloudFront
Cloud Amazon Web Services
DNS Google Domains DNS
Hosting AWS S3
Protocol HTTP/3
Email
Business email Google Workspace (3)
Build & Framework
CSS framework Tailwind CSS
Developer tools Vite
JavaScript library React Router
UI library shadcn/ui
Video YouTube (2)
Analytics & Marketing
Analytics Blink Analytics
SEO Google Search Console
AI & Emerging
AI builder Blink

Infrastructure

Network
SQUARESPACE - Squarespace, Inc., US
AS53831 · US
DNS
Google Domains DNS
Authoritative nameserver
DNSSEC
Not enabled
DNS responses unsigned. Cache-poisoning vulnerable.
SSL Certificate
Let's Encrypt
Valid 5 Jun 2026 to 3 Sep 2026
Certificate as captured in this snapshot, not a live check.

Email Security

SPF ~all Soft-fail (~all). Common and accepted.
DKIM Detected via known email provider
DMARC p=none None (p=none). Monitoring only.
?
MTA-STS Not deployed. Mail to your domain can be downgraded to plaintext en route.
?
TLS-RPT Not configured. You won't hear about silent SMTP TLS handshake failures.

Storage (8)

Cookies (6)
NameLifetimeDetected as
crumb session -
VISITOR_INFO1_LIVE 5mo YouTube
VISITOR_PRIVACY_METADATA 5mo YouTube
YSC session -
__Secure-ROLLOUT_TOKEN 5mo -
__Secure-YNID 5mo YouTube
Local storage (1)
KeySizeDetected as
blinkAnalyticsSession_mini-cfo-ai-m8olwuiv 93 B Blink Analytics
Session storage (1)
KeySizeDetected as
_bsid_mini-cfo-ai-m8olwuiv 9 B -

Readiness Breakdown How?

Custom title and meta description
Open Graph tags (title, image, description)
Twitter card meta tags
Canonical URL declared
Responsive viewport meta tag
Favicon present
Semantic HTML (nav, main, article)
Page title is 95 characters (advisory) Google only shows about 60 characters of the title in search results; aim for 50–60 to keep the whole thing visible.
Meta description is 199 characters (advisory) Google only shows about 155–160 characters of the description in desktop search results (less on mobile); anything past that won't appear.

Performance How?

634 ms Server response
26% Faster than peers
1928 ms Largest contentful paint
0.70 Cumulative layout shift
2.9 MB Page weight
1.4 MB Image weight
3 Third-party domains
4 Console errors
1 Failed requests

2 images: 2 without width/height

Broken first-party requests (1), worth fixing
  • net::ERR_FAILED /assets/index-BPITkYb2.css

Indicative grade from a single automated render, not a substitute for Lighthouse or field data, and not part of the StackScope score.

Vibe Score Breakdown How?

SignalPoints
AI CSS signals +15
AI writing signals +3

This score is based on structural patterns and is not definitive. Many legitimate sites may trigger signals, and AI-built sites may go undetected. It should be treated as an indicator, not a verdict.

AI Stance

Welcomes AI crawlers
llms.txt published
No AI bots blocked in robots.txt
Content-Signal
? No directive declared
Link headers
? None advertised

Well-Known Files

robots.txt
sitemap.xml (2 URLs)
security.txt
llms.txt
ads.txt
humans.txt

Legal

? Privacy Policy not detected
Terms of Service
? Consent manager not detected
Analytics set tracking cookies on our visit, with no opt-in step.

Security Headers (0/6)

Referrer-Policy
X-Frame-Options
Permissions-Policy experimental (check browser support)
X-Content-Type-Options
Content-Security-Policy
Strict-Transport-Security
X-XSS-Protection deprecated (use Content-Security-Policy)

Build

2 JS files
1 CSS files
3 Third-party domains
Something not look right? If a technology shown here is wrong or out of date, email [email protected] and we'll review it.