diff --git a/bedrock/settings/__init__.py b/bedrock/settings/__init__.py
index 57cf26bb407..03dcc75729d 100644
--- a/bedrock/settings/__init__.py
+++ b/bedrock/settings/__init__.py
@@ -111,7 +111,7 @@
         # support older browsers (mainly Safari)
         "frame-src": _csp_child_src,
         "frame-ancestors": [csp.constants.NONE],
-        "upgrade-insecure-requests": True,
+        "upgrade-insecure-requests": False if DEBUG else True,
         "report-uri": csp_report_uri,
     },
 }