diff --git a/package.json b/package.json
index 9fae5eb92c..e3a2488984 100644
--- a/package.json
+++ b/package.json
@@ -58,7 +58,7 @@
     "express-state": "^1.2.0",
     "express-validator": "^2.18.0",
     "fetchr": "~0.5.12",
-    "frameguard": "~1.1.0",
+    "frameguard": "^2.0.0",
     "gulp": "^3.9.0",
     "gulp-babel": "^6.1.1",
     "gulp-concat": "^2.6.0",
@@ -73,7 +73,7 @@
     "gulp-rev-replace": "~0.4.2",
     "gulp-uglify": "^1.5.1",
     "gulp-util": "^3.0.6",
-    "helmet": "^1.1.0",
+    "helmet": "^2.0.0",
     "helmet-csp": "^1.0.3",
     "history": "^2.0.0",
     "jade": "^1.11.0",
diff --git a/server/middlewares/csp.js b/server/middlewares/csp.js
index b64036275b..599964bc45 100644
--- a/server/middlewares/csp.js
+++ b/server/middlewares/csp.js
@@ -9,7 +9,7 @@ if (process.env.NODE_ENV !== 'production') {
 }
 
 export default function csp() {
-  return helmet.csp({
+  return helmet.contentSecurityPolicy({
     directives: {
       defaultSrc: trusted,
       scriptSrc: [