The Checks
The AI Testing Agents check for many things including...
testers.ai
testers.ai
The AI Testing Agents check for many things including...
Our AI Testing Agents perform detailed checks across multiple categories to ensure thorough testing coverage. Each check is expanded with details focused on what our AI testing service verifies—especially with access to screenshots, the DOM, network calls, and console logs.
| Area/Check | Details of What is Tested |
|---|---|
| Text Contrast | Verify that foreground text has sufficient contrast with the background (WCAG AA/AAA). Detect low-contrast areas in screenshots/DOM. |
| Alt Text for Images | Ensure all meaningful <img> tags have appropriate alt attributes. Flag missing or empty alt text. |
| Keyboard Navigation | Test if all interactive elements can be accessed and operated using keyboard only (Tab, Shift+Tab, Enter, Space). |
| Headings Structure | Check for logical, hierarchical use of heading tags (<h1>, <h2>, etc.) in the DOM. Report missing or skipped levels. |
| Links and Buttons Accessibility | Confirm all links/buttons are keyboard accessible, have discernible names, and are focusable. |
| Accessible Forms | Verify form elements have associated labels, error messages are accessible, and form fields can be completed via keyboard. |
| Visual Elements Clarity | Assess that icons and graphics are clear and understandable, not pixelated, and support accessibility. |
| Error Identification and Suggestions | Check if form errors are announced/accessibly presented, and clear suggestions for correction are provided. |
| Skip Navigation Links | Ensure a "Skip to main content" or similar link is present and operable at the top of the page. |
| Focus Indicators | Validate that all focusable elements display a visible outline or indicator when focused. |
| Language Specification | Check the presence and correctness of the lang attribute on the <html> element. |
| Accessible Media Controls | Ensure video/audio players have accessible controls (play, pause, captions/subtitles, etc.). |
| Semantic HTML | Confirm proper use of semantic HTML elements for structure (e.g., <nav>, <main>, <footer>). |
| Readable Text | Assess font size, spacing, and line height to ensure legibility. |
| Missing Alt Text for Images | List all images missing the alt attribute or with empty/placeholder text. |
| Color Contrast Issues | Identify any low-contrast UI elements, not just text (borders, icons, controls). |
| Keyboard Accessibility | General check for keyboard operability on all widgets, menus, dialogs, and forms. |
| Missing Headings or Structure | Flag pages with no headings or with only non-semantic structure. |
| Form Accessibility | Additional check for ARIA roles, required field indicators, and accessible error reporting. |
| Screen Reader Compatibility | Use ARIA landmarks, roles, and attributes to assess compatibility for assistive tech. |
| Clear Visual Focus States | Ensure focus indicators are visually distinct and not hidden or overridden by CSS. |
| Text Readability on All Devices | Check for responsive, legible text on mobile, tablet, and desktop viewports. |
| Accessible Navigation Menus | Verify menu items are accessible by keyboard and screen reader, with ARIA attributes as needed. |
| Contextual Help or Tooltips | Confirm the presence and accessibility (keyboard/screen reader) of help icons and tooltips. |
| Appropriate Use of Colors | Ensure color is not the only means of conveying important information; check for icons or text labels as alternatives. |
| Area/Check | Details of What is Tested |
|---|---|
| Injection flaws (SQL, NoSQL, OS, etc.) | Analyze forms, input fields, and APIs for unsanitized inputs and error messages suggesting injection vulnerabilities. |
| Cross-Site Scripting (XSS) | Test for script injection in user inputs, URLs, and reflected content. Scan DOM for suspicious inline event handlers. |
| Broken Authentication | Check for weak authentication patterns, missing session cookies, insecure storage, and predictable login endpoints. |
| Sensitive Data Exposure | Search for sensitive information in network traffic (unencrypted), HTML, or JavaScript. Check error messages and console logs. |
| Security Misconfiguration | Detect default credentials, debug modes, open admin panels, or misconfigured headers (e.g., missing CSP, X-Frame-Options). |
| Cross-Site Request Forgery (CSRF) | Look for missing anti-CSRF tokens in forms and API calls that modify state. |
| Insecure Deserialization | Analyze network traffic and JavaScript for unsafe parsing/deserialization routines. |
| Using Components with Known Vulnerabilities | Flag outdated JavaScript libraries with known vulnerabilities via Snyk/OWASP feeds. |
| Insufficient Logging and Monitoring | Check for absence of network or error logs where expected, or unmonitored critical actions. |
| Broken Access Control | Attempt access to protected resources/pages via direct URLs without authentication. |
| Insecure HTTP requests | Flag resources loaded over HTTP (not HTTPS). |
| Unvalidated Redirects and Forwards | Test for redirects to arbitrary or user-supplied URLs without validation. |
| Information Disclosure | Check for internal server errors, stack traces, or system info in the UI/console. |
| Session Management Flaws | Verify session cookies are secure, HTTPOnly, have appropriate expiry, and are not leaked. |
| Content Security Policy (CSP) | Ensure CSP headers are present and sufficiently restrictive to prevent XSS. |
| Excessive Network Calls | Detect repeated or unnecessary network requests, possibly indicative of vulnerability or inefficiency. |
| Unsecure Network Calls | Flag network requests sending sensitive data unencrypted or over non-secure protocols. |
| Sensitive Information in Console Logs | Search for secrets, tokens, or PII in browser console logs. |
| Vulnerable JavaScript Elements | Identify usage of JavaScript features or APIs known to be unsafe (e.g., eval, document.write). |
| Cross-Domain Issues | Check for risky cross-origin resource sharing, document.domain changes, or CORS misconfigurations. |
| SSL/TLS Configuration Issues | Flag non-HTTPS, expired certificates, or weak ciphers in use. |
| Cross-Origin Resource Sharing (CORS) Issues | Test if APIs allow overly broad origins or credentials. |
| Access Control and Authentication | Attempt to access user-specific or admin resources without proper authentication. |
| Security of Data in Transit | Ensure all user data is sent over HTTPS; flag mixed content. |
| User Data Deletion Option | Check for existence and correct functioning of user data deletion controls (GDPR). |
| Inadequate Encryption for Data Storage | Review JavaScript/HTML for plaintext storage of sensitive data (localStorage, cookies, etc.). |
| Area/Check | Details of What is Tested |
|---|---|
| GDPR Compliance | Check for cookie consent banners, privacy policy links, user rights (access, delete, rectify data). |
| Data Collection Transparency | Analyze privacy policy and page elements for clear explanations of what data is collected and why. |
| Third-Party Tracking | Detect trackers/pixels/scripts from external analytics/ad platforms in the DOM/network. |
| Data Retention Policy | Search for policy descriptions about how long user data is stored; flag if missing. |
| User Consent Management | Check for ability to opt-in/opt-out of data collection; test cookie consent UI. |
| Access Control and Authentication | Ensure only authorized users can access personal data features. |
| Security of Data in Transit | Confirm all personal/user data is transmitted via secure protocols (HTTPS). |
| Privacy Policy Availability | Verify presence, visibility, and accessibility of privacy policy links. |
| User Data Deletion Option | Test UI for deleting personal data/account, check if deletion is functional. |
| Sensitive Data Exposure | Search for accidental leakage of PII (names, emails, etc.) in the DOM, console, or network calls. |
| Data Minimization | Check for excessive or unnecessary data requests/fields on forms and APIs. |
| Cross-Site Scripting (XSS) Vulnerabilities | See if PII is at risk of exposure via reflected or stored XSS vulnerabilities. |
| Inadequate Encryption for Data Storage | Detect unencrypted sensitive data stored in client-side storage. |
| Third-Party Resource Reliability | Monitor reliability and uptime of third-party APIs/resources loaded. |
| Sensitive Information in Console Logs | Flag any user or system data logged to browser console. |
| Cultural Insensitivity or Bias | Analyze content/UI for potentially biased, offensive, or non-inclusive language/images. |
| Legal Issues | Flag any legal compliance problems, such as missing disclosures or regulatory content. |
| Information Disclosure | Detect leaks of confidential/internal information in UI or logs. |
| Session Management Flaws | See security checks for details; session issues impacting privacy are flagged here too. |
| Area/Check | Details of What is Tested |
|---|---|
| Element Overlap | Identify overlapping elements in different screen sizes (from screenshots/DOM). |
| Text Readability | Check that font size, spacing, and wrapping remain readable on all devices. |
| Missing or Cut-Off Content | Detect hidden or clipped text/images on small screens. |
| Button Visibility and Size | Confirm all buttons remain visible, tappable, and large enough on mobile/tablet. |
| Layout Shifting | Monitor for layout shifts as the viewport size changes (CLS metric, visual diffs). |
| Navigation Bar Placement | Check navbar is accessible, not hidden or cut off, and appropriately placed on all devices. |
| Image Scaling and Cropping | Verify images resize without stretching/cropping awkwardly on different devices. |
| Footer Visibility | Ensure footer remains visible and not pushed offscreen on mobile/tablet. |
| Form Field Spacing | Confirm sufficient spacing/padding for easy touch use on mobile. |
| Responsive Media Queries | Test for correct use of CSS media queries in stylesheets. |
| Mobile Responsiveness | General test for page adaptation to various mobile device widths and orientations. |
| Text Readability on All Devices | Confirm readable text on all device types. |
| Mobile Optimization | Check for mobile-friendly meta tags, viewport settings, and performance on mobile. |
| Inadequate Mobile Responsiveness | Detect if UI elements become unusable or broken on mobile/tablet screens. |
| Text and Image Alignment | Ensure consistent alignment across all device sizes. |
| Visual Hierarchy | Assess if important content remains prominent and visually prioritized on all screens. |
| Area/Check | Details of What is Tested |
|---|---|
| Broken Links | Crawl for and click links to ensure none return 404/errors. |
| Missing Alt Text for Images | As in accessibility: ensure all images have meaningful alt text. |
| Color Contrast Issues | As in accessibility: ensure UI elements have sufficient contrast for usability. |
| Keyboard Accessibility | Confirm site is operable via keyboard navigation. |
| Missing Headings or Structure | Ensure logical structure and use of headings for easier scanning by users. |
| Form Accessibility | Confirm forms are easy to use, clearly labeled, and errors are clear. |
| Clarity of Calls to Action (CTAs) | Verify that primary CTAs are obvious and not hidden or confusing. |
| Mobile Responsiveness | See responsive checks: site remains usable on mobile devices. |
| Content Readability | Assess overall readability (grammar, font size, contrast, flow). |
| Error Messages | Check that error messages are clear, specific, and actionable. |
| Page Load Time | Monitor speed and flag slow-loading pages. |
| Content Duplication | Detect repeated or duplicated content on pages. |
| Screen Reader Compatibility | Ensure content is usable with assistive tech (as per accessibility). |
| Unclear Navigation | Check if navigation structure is logical and links are descriptive. |
| Text and Image Alignment | Ensure text and images are consistently and logically aligned. |
| Missing or Inadequate Labels for Interactive Elements | All interactive elements should have labels for clarity. |
| Inconsistent Design Elements | Identify design inconsistencies across different pages or states. |
| Error Prevention | Detect common issues (e.g., required fields, data validation) that prevent errors. |
| User Feedback Mechanisms | Confirm presence and visibility of feedback forms or buttons. |
| Consistent Terminology | Scan for inconsistent naming or terminology. |
| Content Hierarchy | Assess logical ordering of headings, subheadings, and content blocks. |
| Accessible Media Controls | See accessibility. |
| Accessible Navigation Menus | See accessibility. |
| Clear Visual Focus States | See accessibility. |
| Text Readability on All Devices | See responsive/accessibility. |
| Contextual Help or Tooltips | Check for accessible help icons or tooltips. |
| Appropriate Use of Colors | Ensure color choices aid, not hinder, usability. |
| Missing Navigation Options | Confirm all expected navigation paths are present and easy to find. |
| Lack of Visual Hierarchy | See above. |
| No Clear Call to Action (CTA) | Ensure every key page has a clear next action for users. |
| Missing or Inadequate Error Messaging | Error feedback should be clear, visible, and actionable. |
| Insufficient Accessibility Features | Flag missing ARIA, keyboard navigation, etc. |
| Absence of Language Options | Check if language/locale options are available for users as appropriate. |
| Lack of User Feedback Mechanisms | See above. |
| Missing Social Proof Elements | Check for reviews, testimonials, or trust indicators where expected. |
| Lack of Progress Indicators | Flag missing visual feedback in multi-step forms/processes. |
| No Privacy or Security Indicators | Confirm presence of trust signals (lock icons, privacy notices, etc.). |
| Absence of Help or Support Features | Ensure help/contact/support links are available. |
| Lack of Content Updates or Freshness | Flag stale or obviously outdated content. |
| Poor Readability | As above, check readability. |
| Lack of Clarity | Identify ambiguous or unclear content. |
| Inconsistency | Check for inconsistencies in design, flow, or messaging. |
| Truncated Text with Ellipses | Detect when important content is cut off, especially on mobile. |
| Form Field Spacing | Confirm spacing allows for comfortable input, especially on mobile. |
| Footer Visibility | Ensure footer is always visible and contains expected links. |
| Navigation Bar Placement | Navbar is present and logically placed on all devices. |
| Button Visibility and Size | Buttons are prominent, correctly sized, and easily tapped/clicked. |
| Area/Check | Details of What is Tested |
|---|---|
| Content Summary | Generate concise summary of main page content and value proposition. |
| Visual Analysis | Analyze visual style, color palette, consistency, and first impression. |
| Purpose Identification | Infer and validate the intended purpose/functionality of the page or app. |
| User Persona Generation | AI generates one or more user personas most likely to use or benefit from the product. |
| Persona Feedback | Collect hypothetical feedback from each persona, highlighting pain points and positives. |
| Design | Assess UI/UX design for modernity, coherence, and usability. |
| Usability | Evaluate user flows for simplicity, clarity, and effectiveness. |
| Content Relevance | Judge if content matches user needs and expectations for the product/industry. |
| Appealing Features | List standout or unique features from a user perspective. |
| Lacking Aspects | Identify missing or underdeveloped areas/features. |
| Competitive Apps | Suggest similar or competing products based on detected features/content. |
| Competitive Analysis | Compare strengths and weaknesses with competitors. |
| Emotional Impact | Estimate the emotional response users may have (trust, excitement, confusion, etc.). |
| Accessibility | Summarize overall accessibility, highlighting both strengths and issues found. |
| Suggestions | Provide actionable recommendations for improvement. |
| Net Promoter Score | Generate a hypothetical NPS score based on the above analysis. |
| Area/Check | Details of What is Tested |
|---|---|
| Missing Navigation Options | Identify absent or incomplete navigation menus or links. |
| Lack of Visual Hierarchy | Flag pages with poor content prioritization (important content not prominent). |
| No Clear Call to Action (CTA) | Check for absence of obvious, actionable next steps for users. |
| Missing or Inadequate Error Messaging | Flag vague, hidden, or absent error messages. |
| Inadequate Mobile Responsiveness | Identify issues causing poor usability on mobile devices. |
| Insufficient Accessibility Features | Highlight missing ARIA, keyboard navigation, or screen reader support. |
| Absence of Language Options | No option to change or detect language/locale as appropriate. |
| Lack of User Feedback Mechanisms | Missing feedback/contact forms, live chat, or reporting options. |
| Missing Social Proof Elements | Absent trust indicators, reviews, or ratings. |
| Inconsistent Design Elements | Visually or functionally inconsistent elements across pages or flows. |
| Lack of Progress Indicators | Absent progress bars or steps in multi-part forms/processes. |
| Missing or Broken Links | Detect links leading to 404/error pages. |
| No Privacy or Security Indicators | Absent trust signals, privacy notices, or SSL indicators. |
| Absence of Help or Support Features | Missing contact/help/support links. |
| Lack of Content Updates or Freshness | Outdated news, posts, or features. |
| Area/Check | Details of What is Tested |
|---|---|
| Spelling and Grammar Errors | Check for typos, misspellings, and poor grammar in all visible content. |
| Inaccurate Information | Flag factual inconsistencies or misleading statements. |
| Poor Readability | Assess text complexity and structure; flag walls of text or hard-to-read content. |
| Lack of Clarity | Identify ambiguous, confusing, or overly technical language. |
| Inconsistency | Flag inconsistent messaging, terminology, or formatting. |
| SEO Deficiencies | Check for missing meta tags, headers, image alt text, and appropriate keywords. |
| Cultural Insensitivity or Bias | Analyze text and imagery for bias, stereotypes, or non-inclusive content. |
| Legal Issues | Identify absence or problems in legal text (T&Cs, privacy, copyright). |
| Duplication | Detect repeated or duplicate content. |
| Truncated Text with Ellipses | Find areas where content is cut off with ellipses or not fully visible. |
| Accessibility Issues | Highlight any accessibility issues affecting content consumption. |
| Mobile Optimization | Assess content display on mobile screens. |
| Misleading Headlines or Clickbait | Detect headlines that overpromise or mislead users. |
| Content Summary | Summarize main themes and intent of visible content. |
| Content Relevance | Analyze alignment of content with user intent or product purpose. |
| Content Hierarchy | Check logical structure (headings/subheadings) of the content. |
| Content Readability | Ensure text is easy to read and scan. |
| Content Duplication | Repeat of duplication. |
| Missing or Cut-Off Content | Detect when content is not fully visible or loaded. |
| Lack of Content Updates or Freshness | Identify obviously stale or outdated content. |
| Missing Headings or Structure | See above. |
| Consistent Terminology | Ensure consistent naming for features and concepts. |
| Area/Check | Details of What is Tested |
|---|---|
| Failed Requests | Detect and log network requests returning errors (4xx, 5xx). |
| Incorrect Caching Policies | Check HTTP headers for missing or misconfigured cache-control/etag headers. |
| Cross-Origin Resource Sharing (CORS) Issues | Test APIs for correct CORS headers and safe practices. |
| Redundant Requests | Identify duplicate or unnecessary requests for the same resource. |
| Prefetching Issues | Detect prefetch/prefetching of resources that are unused or excessive. |
| Resource Not Found | Monitor for 404s or other missing resources in the network log. |
| Third-Party Resource Reliability | Assess uptime and error rates for third-party scripts/APIs. |
| Suboptimal Resource Prioritization | Identify scripts/resources blocking page rendering or loaded inefficiently. |
| Referencing Very Old or Outdated Libraries | Flag use of deprecated/old JS libraries via network analysis. |
| Unoptimized Resource Sizes | Detect images, scripts, or CSS that are uncompressed, oversized, or non-optimized. |
| SSL/TLS Configuration Issues | Flag non-HTTPS, certificate issues, or weak ciphers. |
| Unnecessary Redirects | Identify unnecessary HTTP redirects impacting performance or user experience. |
| Slow Resource Load Times | Log slow network requests (>threshold, e.g., 2s). |
| API Rate Limiting | Detect server responses indicating API usage is being throttled. |
| Service Worker and PWA Issues | Analyze service worker registration and PWA manifest for issues. |
| Page Load Time | Overall speed/load performance, with network timing breakdowns. |
| Security of Data in Transit | Ensure all user data is sent encrypted (see security/privacy). |
| Insecure HTTP requests | Flag HTTP (vs. HTTPS) requests. |
| Excessive Network Calls | Identify excessive API/resource fetching, often indicative of inefficiency or bugs. |
| Unsecure Network Calls | Detect unencrypted or non-secure resource calls. |
| Area/Check | Details of What is Tested |
|---|---|
| Are there errors mentioned in the console log? | Flag JavaScript errors, stack traces, or runtime exceptions found in the browser console. |
| Are there any offensive words in the console log? | Scan for inappropriate language in log messages. |
| Does the console log look 'messy' or 'unprofessional'? | Detect unfiltered/verbose logs, leftover debug statements, or non-informative output. |
| Are there any warnings in the console log? | Flag all warning messages; report on their frequency and severity. |
| Does the console log contain any messages about deprecated or obsolete API usage? | Search for warnings/errors about deprecated features or APIs. |
| Are there repeated log entries that suggest potential performance or code issues? | Detect excessive/repeated log lines indicating potential performance problems. |
| Is there any sensitive data (e.g., passwords, API keys) exposed in the console log? | Search logs for secrets, tokens, PII. |
| Is the volume of console logs excessive, potentially impacting performance or readability? | Assess overall log volume and flag if too high. |
| Sensitive Information in Console Logs | As above, search for any confidential/user data in logs. |