Hi there! We are currently using Playfab on our Unity based games, and during a Pentest, we had an issue with our calls to https://ade31.playfabapi.com
Specifically, lack or misconfiguration on these headers:
HTTP Strict Transport Security (HSTS), Cache-control, Control-Security-Policy
Do you have any insights on these? Roadmap? Plans to remediate?