The following new violations have been found during the ZAP scan

• Alert[10015] count(2): Incomplete or No Cache-control and Pragma HTTP Header Set
• Alert[10020] count(2): X-Frame-Options Header Not Set
• Alert[10050] count(4): Retrieved from Cache
• Alert[10038] count(4): Content Security Policy (CSP) Header Not Set
• Alert[10036] count(5): Server Leaks Version Information via "Server" HTTP Response Header Field
• Alert[10035] count(4): Strict-Transport-Security Header Not Set
• Alert[10021] count(2): X-Content-Type-Options Header Missing

View the following following file for complete report.