Security hardening + new tools deployment

- Hide Apache version (ServerTokens Prod)
- Add Permissions-Policy header
- Remove deprecated X-XSS-Protection
- Consolidate security headers to .htaccess only (remove duplicates from PHP)
- Deploy free tools: robots-analyzer, data-converter
- Deploy tools announcement blog post
- Update sitemap with new tools and blog post

blog/articles/web-scraping-services-uk-complete-buyers-guide.php

@@ -1,10 +1,6 @@
 <?php
 // Enhanced security headers
-header('X-Content-Type-Options: nosniff');
-header('X-Frame-Options: DENY');
-header('X-XSS-Protection: 1; mode=block');
 header('Strict-Transport-Security: max-age=31536000; includeSubDomains');
-header('Referrer-Policy: strict-origin-when-cross-origin');
 
 // SEO and performance optimizations
 $page_title = "Web Scraping Services UK: Complete 2025 Buyer's Guide | UK Data Services";
@@ -62,6 +58,7 @@ $modified_date = "2025-08-08";
     
     <!-- Styles -->
     <link rel="stylesheet" href="../../assets/css/main.css">
+    <link rel="stylesheet" href="../../assets/css/cro-enhancements.css">
     
     <!-- Article Schema -->
     <script type="application/ld+json">
@@ -705,5 +702,6 @@ $modified_date = "2025-08-08";
         });
     });
     </script>
+<script src="../../assets/js/cro-enhancements.js"></script>
 </body>
 </html>