diff --git a/CHANGELOG.md b/CHANGELOG.md
index a3c686a34..4aa8afb2c 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,6 +1,7 @@
 ## 2.4.0 [unreleased]
 
 - Added `spec` option
+- Added `override_csp` option
 - Show all databases in Rails 6 when no config
 
 ## 2.3.0
diff --git a/app/controllers/pg_hero/home_controller.rb b/app/controllers/pg_hero/home_controller.rb
index 1a26ed367..d12175c3a 100644
--- a/app/controllers/pg_hero/home_controller.rb
+++ b/app/controllers/pg_hero/home_controller.rb
@@ -12,6 +12,12 @@ class HomeController < ActionController::Base
     before_action :set_show_details, only: [:index, :queries, :show_query]
     before_action :ensure_query_stats, only: [:queries]
 
+    if PgHero.config["override_csp"]
+      after_action do
+        response.headers["Content-Security-Policy"] = "default-src 'self' 'unsafe-inline'"
+      end
+    end
+
     def index
       @title = "Overview"
       @extended = params[:extended]