diff --git a/mindinsight/backend/application.py b/mindinsight/backend/application.py
index 5752a8affbeae58187c517b0369e5ffbc371fb46..dc16c5dcb088eca099b34c3b4a16a7dda3d57659 100644
--- a/mindinsight/backend/application.py
+++ b/mindinsight/backend/application.py
@@ -45,6 +45,7 @@ def get_security_headers():
         'frame-src': ["'self'"] + domain_white_list,
         'frame-ancestors': ["'self'"] + domain_white_list,
         'default-src': ["'self'"],
+        'script-src': ["'self'", "'unsafe-eval'"]
     }
 
     headers = {