diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml
index 5f4e0c7..20e6825 100644
--- a/.github/workflows/ci-cd.yml
+++ b/.github/workflows/ci-cd.yml
@@ -51,6 +51,7 @@ jobs:
         run: |
           docker run localhost:5000/kooldev/php:${{ matrix.version }}${{ matrix.type }} php -r "extension_loaded('swoole') or die(1);"
           docker run localhost:5000/kooldev/php:${{ matrix.version }}-nginx${{ matrix.type }} nginx -v
+          docker run localhost:5000/kooldev/php:${{ matrix.version }}-nginx${{ matrix.type }} nginx -t
 
       - name: Tests (dev)
         if: matrix.type == ''
diff --git a/8.1-swoole-nginx-prod/default.tmpl b/8.1-swoole-nginx-prod/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.1-swoole-nginx-prod/default.tmpl
+++ b/8.1-swoole-nginx-prod/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.1-swoole-nginx/default.tmpl b/8.1-swoole-nginx/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.1-swoole-nginx/default.tmpl
+++ b/8.1-swoole-nginx/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.2-swoole-nginx-prod/default.tmpl b/8.2-swoole-nginx-prod/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.2-swoole-nginx-prod/default.tmpl
+++ b/8.2-swoole-nginx-prod/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.2-swoole-nginx/default.tmpl b/8.2-swoole-nginx/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.2-swoole-nginx/default.tmpl
+++ b/8.2-swoole-nginx/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.3-swoole-nginx-prod/default.tmpl b/8.3-swoole-nginx-prod/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.3-swoole-nginx-prod/default.tmpl
+++ b/8.3-swoole-nginx-prod/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.3-swoole-nginx/default.tmpl b/8.3-swoole-nginx/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.3-swoole-nginx/default.tmpl
+++ b/8.3-swoole-nginx/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.4-swoole-nginx-prod/default.tmpl b/8.4-swoole-nginx-prod/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.4-swoole-nginx-prod/default.tmpl
+++ b/8.4-swoole-nginx-prod/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/8.4-swoole-nginx/default.tmpl b/8.4-swoole-nginx/default.tmpl
index cf13ec7..61e476b 100644
--- a/8.4-swoole-nginx/default.tmpl
+++ b/8.4-swoole-nginx/default.tmpl
@@ -61,10 +61,9 @@ server {
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;
diff --git a/template/default-tmpl.blade.php b/template/default-tmpl.blade.php
index 7f7b2f7..416550c 100644
--- a/template/default-tmpl.blade.php
+++ b/template/default-tmpl.blade.php
@@ -61,10 +61,9 @@
     add_header X-Frame-Options "SAMEORIGIN";
 
     # basic H5BP suggestions
-    include h5bp/internet_explorer/x-ua-compatible.conf;
+    include h5bp/cross-origin/requests.conf;
     include h5bp/security/referrer-policy.conf;
     include h5bp/security/x-content-type-options.conf;
-    include h5bp/security/x-xss-protection.conf;
 
     # performance enhancements (mostly for caching static data)
     include h5bp/web_performance/cache-file-descriptors.conf;