Does Safeline drop headers?

I noted that Safeline reverse proxy by default drops some headers which apps send in their response, e.g. X-Powered-By and server. I think this behaviour should be documented! Thank you!

Yes, you're right. It drops certain headers to prevent information disclosure.
We'll add this info on the FAQ page ("Configuration part") in our documentaton soon.
And you can configure it with HTTP Header Settings feature