/
  Cache-Control: no-store
  Content-Security-Policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://accounts.google.com https://challenges.cloudflare.com https://cdn.jsdelivr.net https://telegram.org https://webapi.amap.com; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; img-src 'self' data: blob: https:; font-src 'self' data: https://cdn.jsdelivr.net; connect-src 'self' https: http: blob:; frame-src 'self' https://accounts.google.com https://challenges.cloudflare.com https://oauth.telegram.org https://telegram.org; worker-src 'self' blob:; media-src 'self' blob:; manifest-src 'self'; upgrade-insecure-requests
  Cross-Origin-Opener-Policy: same-origin-allow-popups
  Cross-Origin-Resource-Policy: same-site
  Permissions-Policy: camera=(), geolocation=(self), microphone=(self), payment=(), usb=(), accelerometer=(), gyroscope=(), magnetometer=()
  Referrer-Policy: strict-origin-when-cross-origin
  Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
  X-Content-Type-Options: nosniff
  X-Frame-Options: DENY

/index.html
  Cache-Control: no-store
  Content-Security-Policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://accounts.google.com https://challenges.cloudflare.com https://cdn.jsdelivr.net https://telegram.org https://webapi.amap.com; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; img-src 'self' data: blob: https:; font-src 'self' data: https://cdn.jsdelivr.net; connect-src 'self' https: http: blob:; frame-src 'self' https://accounts.google.com https://challenges.cloudflare.com https://oauth.telegram.org https://telegram.org; worker-src 'self' blob:; media-src 'self' blob:; manifest-src 'self'; upgrade-insecure-requests
  Cross-Origin-Opener-Policy: same-origin-allow-popups
  Cross-Origin-Resource-Policy: same-site
  Permissions-Policy: camera=(), geolocation=(self), microphone=(self), payment=(), usb=(), accelerometer=(), gyroscope=(), magnetometer=()
  Referrer-Policy: strict-origin-when-cross-origin
  Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
  X-Content-Type-Options: nosniff
  X-Frame-Options: DENY

/*.html
  Cache-Control: no-store
  Content-Security-Policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://accounts.google.com https://challenges.cloudflare.com https://cdn.jsdelivr.net https://telegram.org https://webapi.amap.com; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; img-src 'self' data: blob: https:; font-src 'self' data: https://cdn.jsdelivr.net; connect-src 'self' https: http: blob:; frame-src 'self' https://accounts.google.com https://challenges.cloudflare.com https://oauth.telegram.org https://telegram.org; worker-src 'self' blob:; media-src 'self' blob:; manifest-src 'self'; upgrade-insecure-requests
  Cross-Origin-Opener-Policy: same-origin-allow-popups
  Cross-Origin-Resource-Policy: same-site
  Permissions-Policy: camera=(), geolocation=(self), microphone=(self), payment=(), usb=(), accelerometer=(), gyroscope=(), magnetometer=()
  Referrer-Policy: strict-origin-when-cross-origin
  Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
  X-Content-Type-Options: nosniff
  X-Frame-Options: DENY

/assets/styles/*
  Cache-Control: public, max-age=31536000, immutable

/assets/scripts/*
  Cache-Control: public, max-age=31536000, immutable

/assets/vendor/*
  Cache-Control: public, max-age=31536000, immutable

/assets/models/*
  Cache-Control: public, max-age=31536000, immutable

/runtime/*
  Cache-Control: public, max-age=31536000, immutable

/assets/fonts/*
  Cache-Control: public, max-age=31536000, immutable

/assets/icons/*
  Cache-Control: no-store

/automation-diagnostics.html
  X-Robots-Tag: noindex, nofollow, noarchive

/_next/static/*
  Cache-Control: public, max-age=31536000, immutable
