diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
index 5752b01..d31804f 100644
--- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
+++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
@@ -46,7 +46,7 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-a8541357ef49b3b0096f5e1d2060c700bb6b7e28"
+    tag: "r-5b3795e964d725e0ca2d4947e23f209453114124"
     dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp"
     credentials: "git-credentials"
   keystores:
diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/csp_security_response_headers.lua b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/csp_security_response_headers.lua
index 45b58e6..ba9b8be 100644
--- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/csp_security_response_headers.lua
+++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/csp_security_response_headers.lua
@@ -3,16 +3,16 @@ function outputHeader(request, response)
 
     cspHeader = response:getHeader("content-security-policy")
     if (cspHeader ~= nil) then 
-        trace:debug("CSP01", "CSP-header set by backend, keep it as is (" .. cspHeader .. ")")
+        trace:debug("AGOV CSP: Header set by backend, keep it as is (" .. cspHeader .. ").")
     else
-        trace:debug("CSP02", "CSP-header not set by backend, we set the default AGOV one (" .. param_csp .. ")")
+        trace:debug("AGOV CSP: Header not set by backend, default AGOV csp set (" .. param_csp .. ").")
         response:setHeader("content-security-policy", param_csp)
     end
 
     if (param_report_only_csp ~= nil and param_report_only_csp ~= "none") then
-        trace:debug("CSP03", "Additionl report only CSP-header set (" .. param_report_only_csp .. ")")
-        response:setHeader("content-security-policy", param_csp)
+        trace:debug("AGOV CSP: Additionl report only CSP-header set (" .. param_report_only_csp .. ")")
+        response:setHeader("content-security-policy-report-only", param_report_only_csp)
     else
-        trace:debug("CSP03", "No report only CSP-header set")
+        trace:debug("AGOV CSP: No report only CSP-header set")
     end
 end
\ No newline at end of file