diff --git a/lib/csp.js b/lib/csp.js
index c54007646..cc36b5324 100644
--- a/lib/csp.js
+++ b/lib/csp.js
@@ -8,6 +8,7 @@ const defaultDirectives = {
   baseUri: ['\'self\''],
   connectSrc: ['\'self\''],
   fontSrc: ['\'self\''],
+  manifestSrc: ['\'self\''],
   frameSrc: ['\'self\'', 'https://player.vimeo.com', 'https://www.slideshare.net/slideshow/embed_code/key/', 'https://www.youtube.com'],
   imgSrc: ['*'], // we allow using arbitrary images
   scriptSrc: [