Permissions-Policy lets you explicitly turn off browser features your site doesn't use — camera, microphone, geolocation, USB access — so that even if a third-party script or a compromised ad gets injected into your page, it can't silently request access to hardware it has no legitimate reason to touch.
Without this, scripts on your page can request access to camera, microphone, and geolocation. Disabling features you don't use eliminates that attack surface entirely.
The Permissions-Policy header is present and disables browser features your site doesn't actually use.
Fix it, then re-scan — the check confirms itself. No manual checkbox, the scan is the truth.
Run this check in H.I.V.E. →