diff --git a/app/Http/Middleware/CSPHeader.php b/app/Http/Middleware/CSPHeader.php
index 7dd83c2e..67b9632e 100644
--- a/app/Http/Middleware/CSPHeader.php
+++ b/app/Http/Middleware/CSPHeader.php
@@ -56,6 +56,7 @@ performance.typekit.net \
 data: blob:; \
 worker-src 'self' blob:; \
 frame-src 'self' https://www.youtube.com blob:; \
+child-src blob:; \
 upgrade-insecure-requests; \
 block-all-mixed-content; \
 report-to csp-endpoint; \