Hi All, 1.We are using SCA Elbrus and needed to implement Strict-Transport-Security as per the security recommendation. .  I have tried to incorporated Strict-Transport-Security in response header -https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security. I have added the code below in a shopping.ssp,checkout.ssp,my_account.ssp file: response.addHeader('Strict-Transport-Security', 'max-age=31536000’); However, when adding this on the response header is throws an error stating one or more header are not valid. Could anyone help me resolve this issue? 2. Also Can anyone let me know if it is safe to Upgrade the version of Bootstrap used in SCA Elbrus from 3.3.1 to 3.4.0? We need to do this as per a security recommendation. I have tried it and prima facie seems to work ok but just needed to check if there are any Platform recommendations/guidleines/implicit-issues against upgrading

Ohh Thanks @battk

if you require additional help interpreting the docs, you can ask netsuite support