Sorry, you need to enable JavaScript to visit this website.
Skip to main content

Site Audit

A clear health check of your Drupal site—highlighting risks and opportunities so you can plan strategically and grow with focus.

Clipboard with checklist and a magnifying glass on documents.

What Is a Drupal Audit?

A Drupal audit is a comprehensive review of your site’s health, covering security, performance, code quality, module usage, hosting, and upgrade readiness. It identifies risks, inefficiencies, and opportunities for improvement.

Why This Matters

  • Many Drupal sites accumulate technical debt that slows down development.
  • Undiscovered security risks leave organisations exposed.
  • Without audits, upgrades can be harder, more expensive, or even blocked.
  • An audit provides the foundation for strategic decision-making. With a clear picture of the site’s current state, CTOs and product teams can build a roadmap for evolving the site as a product—from upgrade planning to ongoing improvements.
  • We also work with teams to turn audit findings into strategic plans, helping you prioritise investment and development going forward.

What We Do

  • Review Drupal core and contrib module versions.
  • Identify security vulnerabilities and patching gaps.
  • Audit codebase for standards compliance and maintainability.
  • Assess performance bottlenecks (caching, database, theming).
  • Check Composer setup, dependencies, and patch management.
  • Validate CI/CD pipelines and DevOps practices.
  • Deliver a clear, actionable report highlighting issues and opportunities.
  • Support your leadership or product team in using the findings for strategic planning.

Implementation Approach

  • Discovery – Collect access and baseline data.
  • Assessment – Automated scans + manual review of code and configs.
  • Analysis – Identify risks, blockers, and optimisation opportunities.
  • Report – Deliver a structured document with actionable findings.
  • Strategic Planning – (Optional) work with your team to translate findings into a roadmap for upgrades, maintenance, and product evolution.

Kickstart your next Drupal project with Vortex, our battle-tested, Docker-ready starter kit.

Try Vortex (Opens in a new tab/window)

Who This Is For

  • Teams unsure about the current state of their Drupal site.
  • Organisations preparing for a Drupal upgrade.
  • Agencies inheriting a project and needing a clear baseline.
  • CTOs and product owners who need clarity to plan their Drupal site as a long-term product.

Real Example

We audited a university’s Drupal 9 platform with ~80 modules. Our report uncovered four critical security patches, an outdated Composer setup, and caching misconfiguration. Beyond the fixes, the audit gave the technical leadership clarity on upgrade readiness and helped them build a roadmap for evolving the site through Drupal 10/11 and beyond.

FAQs

Will you fix issues during the audit?
The audit delivers a report. Fixes and follow-up can be scheduled separately.

How does this help us strategically?
By surfacing issues and opportunities, the audit gives your leadership team the facts needed to build a roadmap. We can also assist in turning this into a strategic plan.

  • Audit

Get in touch with us today!

Let's talk

DrevOps® is located on the traditional lands of the Wurundjeri-willam people of the Kulin Nation. We pay our respects to Elders both past and present and recognise Aboriginal and Torres Strait Islander people as the Traditional Custodians of the land.

©2025 DrevOps®

Built with CivicTheme(Opens in a new tab/window)

Return focus to the top of the page