Was looking if there is a setting in BPSpro to deal with these warnings I got from the scan on my wordpress site. I see WP plugins for security headers but maybe there is a setting to take care on it in BPSpro.
Thanks
IMPROVEMENTS:
Header Referrer-Policy Missing This header should be set to no-referrer to prevent referrer information from being sent.
Header X-Content-Type-Options Missing This header should be set to nosniff to prevent browsers from doing MIME-type sniffing.
Header X-Frame-Options Missing This header should be set to DENY to prevent any domain from framing (iframe) the site.
Header X-XSS-Protection Missing This header should be set to 1 so browsers can attempt to block XSS attacks.