diff --git a/queue/package.json b/queue/package.json
index a5781bc3f..78a6db397 100644
--- a/queue/package.json
+++ b/queue/package.json
@@ -31,6 +31,7 @@
     "dotenv": "^16.4.5",
     "exceljs": "^4.4.0",
     "express": "^4.21.0",
+    "helmet": "^8.0.0",
     "http-auth": "^4.2.0",
     "parse-redis-url-simple": "^1.0.2"
   },
diff --git a/queue/src/server.ts b/queue/src/server.ts
index 48f67d20e..0af6a4b54 100644
--- a/queue/src/server.ts
+++ b/queue/src/server.ts
@@ -1,4 +1,5 @@
 import express from 'express';
+import helmet from 'helmet';
 import util from 'node:util';
 
 import {
@@ -14,7 +15,8 @@ import { createBasicAuth } from './basic-auth';
 
 function createServer() {
   const app = express();
-
+  app.use(helmet());
+  
   const logger = createLogger('queue');
   app.set('trust proxy', 1);
 
diff --git a/yarn.lock b/yarn.lock
index 5b19bbf27..1a3bc7d6f 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -10663,6 +10663,7 @@ __metadata:
     dotenv: "npm:^16.4.5"
     exceljs: "npm:^4.4.0"
     express: "npm:^4.21.0"
+    helmet: "npm:^8.0.0"
     http-auth: "npm:^4.2.0"
     jest: "npm:^29.7.0"
     jest-extended: "npm:^4.0.2"
@@ -17639,6 +17640,13 @@ __metadata:
   languageName: node
   linkType: hard
 
+"helmet@npm:^8.0.0":
+  version: 8.0.0
+  resolution: "helmet@npm:8.0.0"
+  checksum: 10c0/c3d273df206cbb4e5e830ea68afdbd3d0f8e055b2707f67f651ebb4b679c7fd4d6ac77ce6188a2cee32e853d4e24aa00548f787989bbe6e5f98ebfb703855d09
+  languageName: node
+  linkType: hard
+
 "help-me@npm:^5.0.0":
   version: 5.0.0
   resolution: "help-me@npm:5.0.0"