diff --git a/ingress/values.yaml b/ingress/values.yaml
index 3346a766f..edb76e28f 100644
--- a/ingress/values.yaml
+++ b/ingress/values.yaml
@@ -150,6 +150,8 @@ network:
       nginx.ingress.kubernetes.io/configuration-snippet: |
         more_set_headers "X-Content-Type-Options: nosniff";
         more_set_headers "X-Frame-Options: deny";
+        more_set_headers "X-Permitted-Cross-Domain-Policies: none";
+        more_set_headers "Content-Security-Policy: script-src 'self'";
   external_policy_local: false
 
 dependencies: