diff --git a/lib/csp.js b/lib/csp.js
index a5f0a4fcd..616c1d21f 100644
--- a/lib/csp.js
+++ b/lib/csp.js
@@ -1,5 +1,5 @@
 const config = require('./config')
-const uuid = require('uuid')
+const { v4: uuidv4 } = require('uuid')
 
 const CspStrategy = {}
 
@@ -98,7 +98,7 @@ function addReportURI (directives) {
 }
 
 CspStrategy.addNonceToLocals = function (req, res, next) {
-  res.locals.nonce = uuid.v4()
+  res.locals.nonce = uuidv4()
   next()
 }
 
diff --git a/package.json b/package.json
index bd83a1628..71fc5ab1a 100644
--- a/package.json
+++ b/package.json
@@ -128,7 +128,7 @@
     "tedious": "^6.6.0",
     "toobusy-js": "^0.5.1",
     "turndown": "^7.0.0",
-    "uuid": "^3.1.0",
+    "uuid": "^8.0.0",
     "validator": "^13.0.0",
     "velocity-animate": "^1.4.0",
     "visibilityjs": "^2.0.0",
diff --git a/yarn.lock b/yarn.lock
index f31e183f3..c28f529c5 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -11003,6 +11003,11 @@ uuid@^3.0.0, uuid@^3.1.0, uuid@^3.2.1, uuid@^3.3.2, uuid@^3.3.3:
   resolved "https://registry.yarnpkg.com/uuid/-/uuid-3.4.0.tgz#b23e4358afa8a202fe7a100af1f5f883f02007ee"
   integrity sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A==
 
+uuid@^8.0.0:
+  version "8.3.2"
+  resolved "https://registry.yarnpkg.com/uuid/-/uuid-8.3.2.tgz#80d5b5ced271bb9af6c445f21a1a04c606cefbe2"
+  integrity sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==
+
 v8-compile-cache@^2.0.3, v8-compile-cache@^2.2.0:
   version "2.2.0"
   resolved "https://registry.yarnpkg.com/v8-compile-cache/-/v8-compile-cache-2.2.0.tgz#9471efa3ef9128d2f7c6a7ca39c4dd6b5055b132"