diff --git a/middleware.js b/middleware.js
index 1c94bd7a3..4d629c033 100644
--- a/middleware.js
+++ b/middleware.js
@@ -22,11 +22,11 @@ export function middleware (request) {
   const cspHeader = [
     "default-src 'none'",
     "font-src 'self'",
-    'img-src https: data:',
+    "img-src 'self' https: data:",
     "script-src 'self' 'unsafe-inline' 'unsafe-eval'",
     "style-src 'self' 'unsafe-inline'",
     "manifest-src 'self'",
-    'connect-src https: wss:',
+    "connect-src 'self' https: wss:",
     'upgrade-insecure-requests'
   ].join('; ')