Options equivalent to Cerbot's security settings?

[Klaaktu]

Cerbot has some security settings like --must-staple --redirect --hsts --uir, are there equivalent options or are they perhaps enabled by default in acme.sh?
(But thb some of the options sound like web server options, I'm not sure what's happening...)

Edit:
--must-staple: --ocsp / --ocsp-must-staple

[Klaaktu]

The --must-staple option affects the content of the SSL/TLS certificate by adding an extension to the certificate known as the "OCSP Must-Staple".
The rest of the options you mentioned, including --key-type, --redirect, --hsts, --uir, and --auto-hsts, do not directly affect the content of the SSL/TLS certificate. Instead, these options are used to modify the server configuration to ensure that HTTPS traffic is served securely and in accordance with best practices.

Source: ChatGPT

[Klaaktu]

p.s. Might not be right about --key-type.