I have submitted my app many times, but always rejected with the same reason about redirect

I am the developer of a Shopify App, I have submitted my app many times, but always rejected with the same reason like this:

App must set security headers to protect against clickjacking. Your app does not request installation on the shop immediately after clicking "add app". Apps must ask a shop for access when being installed on a shop for the first time, as well as when they are being reinstalled after having been removed. During install or reinstall we expected OAuth to be initiated at https://cambridgetestshop.myshopify.com/admin/oauth/request_grant but was redirected to https://cambridgetest.myshopify.com/admin/oauth/authorize?client_id=3ab41219bda1498bf23ebbd3f4b95b17.... Learn more about authentication in our developer documentation

Here is a similar question in Shopify Community, my code is same with his code, but why he works and I don't work. Here is the question url:

https://community.shopify.com/c/shopify-apps/oauth-review-failing-automatic-checks-please-help/m-p/1...

Is somebody facing the similar issues?