diff --git a/template.env b/template.env
index bf18b62..1fdbfce 100644
--- a/template.env
+++ b/template.env
@@ -202,12 +202,12 @@ SYNCSERVERS_1_PULL_RULES=
 
 # Security Settings
 # Maximum time (in seconds) for HSTS (HTTP Strict Transport Security), ensures HTTPS is used.
-HSTS_MAX_AGE=
+# HSTS_MAX_AGE=
 
 # X-Frame-Options policy configuration: controls whether the site can be embedded in frames or iframes.
 # Options: DENY, SAMEORIGIN, ALLOW-FROM <URL> Default: SAMEORIGIN
-X_FRAME_OPTIONS=""
+# X_FRAME_OPTIONS=
 
 # Content-Security-Policy (CSP) configuration: defines allowed resources and prevents attacks like XSS.
 # Example: "frame-src 'self' https://*.example.com; frame-ancestors 'self' https://*.example.com; object-src 'none'; report-uri https://example.com/cspReport"
-CONTENT_SECURITY_POLICY=""
+# CONTENT_SECURITY_POLICY=