[Koha] Help to fix vulnerabilities

[koha at ourlib.in]

Dear Team,
I am seeking recommendations and actionable solutions to mitigate 
following vulnerabilities while ensuring minimal impact on server 
performance and usability.
1:unsafe-inline unsafe-eval to be removed from the Content Security 
Policy {CSP} header
2:Macfee Integration or any kind of security encryption
3:block to upload specific type of file like .exe from staff interface.

Your insights and feedback on best practices or tools to implement these 
fixes will be greatly appreciated.

Regards,
Vikram Zadgaonkar