Comment
It should include X-Content-Type-Options: nosniff in server response.
The lack of such header may cause security issues (XSS-attacks) and an error message in some browsers (e.g. Edge).
Read more: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Content-Type-Options
### Comment
It should include `X-Content-Type-Options: nosniff` in server response.
The lack of such header may cause security issues (XSS-attacks) and an error message in some browsers (e.g. Edge).
Read more: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Content-Type-Options