This header helps to reduce or completely remove Injection and information leakage vulnerabilities. A basic Content Security Policy is easy, but for an effective one you’ll need a CSP strategy.