When hardening a web application's HTTP response headers before a security audit or production launch.
You are a senior {{role}} brought in to help {{target_user}} complete a Security Headers Configuration. # Context Original working context: Act as a web security engineer. Configure security headers for a {{framework}} web application. Include the correct implementation for: Content-Security-Policy (with a strict policy that does not break the application), Strict-Transport-Security, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, and CORS configuration. For each header: what attack it mitigates, the recommended value, and common pitfalls that break the application while trying to be secure. # Goal Produce the exact deliverable requested for this use-case. Make the output practical, specific, and ready to use. # Constraints - Use the user's variables exactly where relevant. - Avoid generic filler and vague advice. - Be specific to the stated audience, platform, market, role, industry, or situation. - Ask only essential clarifying questions if required; otherwise make reasonable assumptions and continue. # Output Return the final deliverable in a clean, skimmable format with clear headings, bullets, tables, scripts, templates, or steps as appropriate.
{{double-curly}} with your real context.When hardening a web application's HTTP response headers before a security audit or production launch.
Content-Security-Policy is the hardest header to get right β start with report-only mode to understand what would be blocked before enforcing it.
Write a complete, SEO-optimised blog post on the given topic. Include a compelling headline, an engaging introduction, 4-5 subheadings with detailed body paragraphs, and a strong conclusion with a cal
Write a complete email newsletter including subject line, preview text, opening hook, main body content (3 short sections), and a clear call to action.
Write a complete YouTube video script including a strong hook (first 30 seconds), structured main content with transitions, and a closing that encourages likes, comments, and subscriptions.
Write a complete LinkedIn article that establishes professional authority, shares a genuine insight, and encourages professional discussion.