diff --git a/backend/src/api/routes/index.ts b/backend/src/api/routes/index.ts
index 526742090..7e5bd4cf1 100644
--- a/backend/src/api/routes/index.ts
+++ b/backend/src/api/routes/index.ts
@@ -146,6 +146,13 @@ function applyApiRoutes(app: Application): void {
         recordClientVersion(clientVersion?.toString() ?? "unknown");
       }
 
+      if (req.path.startsWith("/docs")) {
+        res.setHeader(
+          "Content-Security-Policy",
+          "default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' monkeytype.com cdn.redoc.ly data:;object-src 'none';script-src 'self' cdn.redoc.ly 'unsafe-inline'; worker-src blob: data;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests"
+        );
+      }
+
       next();
     }
   );