diff --git a/CHANGELOG.md b/CHANGELOG.md
index e01b105c04..25f59a565f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,9 @@
 # Changelog
 
+## 3.5.4
+
+- fix: helmet wap csp in quotes
+
 ## 3.5.3
 
 - fix: lax helmet csp config for styles.
diff --git a/lib/middleware/helmet.js b/lib/middleware/helmet.js
index b847d83aa8..3107e6b0fc 100644
--- a/lib/middleware/helmet.js
+++ b/lib/middleware/helmet.js
@@ -14,10 +14,10 @@ module.exports = function(config) {
                     ],
                     styleSrc: [
                         "'self'",
+                        "'unsafe-inline'",
                         'fonts.googleapis.com',
                         'fonts.gstatic.com',
                         'data:',
-                        'unsafe-inline',
                     ],
                 },
             },