diff --git a/netlify.toml b/netlify.toml
index 4ff7cd184..0ed0091b0 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -29,4 +29,5 @@
   for = "/*"
   [headers.values]
     X-Content-Type-Options = "nosniff"
-    X-XSS-Protection = "1; mode=block"
\ No newline at end of file
+    Strict-Transport-Security = "max-age=31536000; includeSubDomains"
+    Content-Security-Policy = "img-src 'self'; frame-ancestors 'self';"