diff --git a/api/helpers.py b/api/helpers.py
index e1689df..01ed36b 100644
--- a/api/helpers.py
+++ b/api/helpers.py
@@ -41,7 +41,9 @@ def _security_headers(handler):
     handler.send_header('Referrer-Policy', 'same-origin')
     handler.send_header(
         'Content-Security-Policy',
-        "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; "
+        "default-src 'self'; "
+        "script-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; "
+        "style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; "
         "img-src 'self' data:; font-src 'self' data:; connect-src 'self'; "
         "base-uri 'self'; form-action 'self'"
     )