diff --git a/frontend/nginx.conf b/frontend/nginx.conf
index 537caa7..c0b2c23 100644
--- a/frontend/nginx.conf
+++ b/frontend/nginx.conf
@@ -53,7 +53,7 @@ http {
         add_header X-Content-Type-Options "nosniff" always;
         add_header Referrer-Policy "strict-origin-when-cross-origin" always;
         add_header Permissions-Policy "camera=(), microphone=(), geolocation=()" always;
-        add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self' http://localhost:8080 http://localhost:80; frame-ancestors 'none'" always;
+        add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-hashes' 'sha256-MhtPZXr7+LpJUY5qtMutB+qWfQtMaPccfe7QXtCcEYc='; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self' http://localhost:8080 http://localhost:80; frame-ancestors 'none'" always;
         # Uncomment in production when behind TLS:
         # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;