If you are looking for a way to avoid running the Azure pipeline agents with administrator privileges, I hope this short blog post might be of use to you.

I’ve been willing to write about HTTP security headers for a long time, but never took the time to actually do it.
Well, here it is. I’m going to keep it concise, while still attempting to explain each header and its options.