diff --git a/backend/src/app.js b/backend/src/app.js
index 22850e4..690d62a 100644
--- a/backend/src/app.js
+++ b/backend/src/app.js
@@ -18,13 +18,13 @@ app.use(helmet({
     directives: {
       defaultSrc: ["'self'"],
       styleSrc: ["'self'", "'unsafe-inline'", "https://ui-avatars.com"],
-      scriptSrc: ["'self'"],
+      scriptSrc: ["'self'", "https://challenges.cloudflare.com"],
       imgSrc: ["'self'", "data:", "https:", "https://ui-avatars.com"],
-      connectSrc: ["'self'"],
+      connectSrc: ["'self'", "https://challenges.cloudflare.com"],
       fontSrc: ["'self'"],
       objectSrc: ["'none'"],
       mediaSrc: ["'self'"],
-      frameSrc: ["'none'"],
+      frameSrc: ["'self'", "https://challenges.cloudflare.com"],
     },
   },
   hsts: {