From 71d5bfc8934357ce1083eb255b6d661547c37933 Mon Sep 17 00:00:00 2001
From: salonisingh-5 <singhsaloni1401@gmail.com>
Date: Fri, 19 Jun 2026 11:01:47 +0530
Subject: [PATCH] feat: add HTTP security headers

---
 next.config.ts | 33 +++++++++++++++++++++++++++++++--
 1 file changed, 31 insertions(+), 2 deletions(-)

diff --git a/next.config.ts b/next.config.ts
index e9ffa30..a108b16 100644
--- a/next.config.ts
+++ b/next.config.ts
@@ -1,7 +1,36 @@
 import type { NextConfig } from "next";
 
 const nextConfig: NextConfig = {
-  /* config options here */
+  async headers() {
+    return [
+      {
+        source: "/(.*)",
+        headers: [
+          {
+            key: "X-Frame-Options",
+            value: "SAMEORIGIN",
+          },
+          {
+            key: "X-Content-Type-Options",
+            value: "nosniff",
+          },
+          {
+            key: "Referrer-Policy",
+            value: "strict-origin-when-cross-origin",
+          },
+          {
+            key: "Permissions-Policy",
+            value:
+              "camera=(), microphone=(), geolocation=(), payment=()",
+          },
+          {
+            key: "X-DNS-Prefetch-Control",
+            value: "on",
+          },
+        ],
+      },
+    ];
+  },
 };
 
-export default nextConfig;
+export default nextConfig;
\ No newline at end of file