diff --git a/sources/patches_last_version/app-01-disable-CSPv3-nonce_and_allow-YNH-fonts.patch b/sources/patches_last_version/app-01-disable-CSPv3-nonce_and_allow-YNH-fonts.patch
index 42d6d99..d5a609a 100644
--- a/sources/patches_last_version/app-01-disable-CSPv3-nonce_and_allow-YNH-fonts.patch
+++ b/sources/patches_last_version/app-01-disable-CSPv3-nonce_and_allow-YNH-fonts.patch
@@ -1,9 +1,9 @@
- lib/private/Security/CSP/ContentSecurityPolicyNonceManager.php | 4 ++++
- lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php    | 3 ++-
+ .../Security/CSP/ContentSecurityPolicyNonceManager.php        | 4 ++++
+ lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php   | 3 ++-
  2 files changed, 6 insertions(+), 1 deletion(-)
 
 diff --git a/lib/private/Security/CSP/ContentSecurityPolicyNonceManager.php b/lib/private/Security/CSP/ContentSecurityPolicyNonceManager.php
-index 088fb2d859..15b05b75d1 100644
+index 795d8cc864..5f3c961445 100644
 --- a/lib/private/Security/CSP/ContentSecurityPolicyNonceManager.php
 +++ b/lib/private/Security/CSP/ContentSecurityPolicyNonceManager.php
 @@ -70,6 +70,10 @@ class ContentSecurityPolicyNonceManager {
@@ -18,16 +18,16 @@ index 088fb2d859..15b05b75d1 100644
  			Request::USER_AGENT_CHROME,
  			// Firefox 45+
 diff --git a/lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php b/lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php
-index 6397d32cb9..32281a1734 100644
+index 3fcef1d0ef..7ce01a68fc 100644
 --- a/lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php
 +++ b/lib/public/AppFramework/Http/EmptyContentSecurityPolicy.php
-@@ -406,7 +406,8 @@ class EmptyContentSecurityPolicy {
- 
+@@ -449,7 +449,8 @@ class EmptyContentSecurityPolicy {
+
  		if(!empty($this->allowedFontDomains)) {
  			$policy .= 'font-src ' . implode(' ', $this->allowedFontDomains);
 -			$policy .= ';';
 +			// YunoHost patch: extend font-src to load data fonts embedded in YunoHost tile script
 +			$policy .= ' data:;';
  		}
- 
+
  		if(!empty($this->allowedConnectDomains)) {
diff --git a/sources/patches_last_version/app-02-Allow-for-eval-in-JS-scripts-for-YunoHost-tile.patch b/sources/patches_last_version/app-02-Allow-for-eval-in-JS-scripts-for-YunoHost-tile.patch
new file mode 100644
index 0000000..38f37f9
--- /dev/null
+++ b/sources/patches_last_version/app-02-Allow-for-eval-in-JS-scripts-for-YunoHost-tile.patch
@@ -0,0 +1,17 @@
+ lib/public/AppFramework/Http/ContentSecurityPolicy.php | 3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/lib/public/AppFramework/Http/ContentSecurityPolicy.php b/lib/public/AppFramework/Http/ContentSecurityPolicy.php
+index e9ecf00036..8e69c8d2dc 100644
+--- a/lib/public/AppFramework/Http/ContentSecurityPolicy.php
++++ b/lib/public/AppFramework/Http/ContentSecurityPolicy.php
+@@ -44,7 +44,8 @@ class ContentSecurityPolicy extends EmptyContentSecurityPolicy {
+ 	/** @var bool Whether inline JS snippets are allowed */
+ 	protected $inlineScriptAllowed = false;
+ 	/** @var bool Whether eval in JS scripts is allowed */
+-	protected $evalScriptAllowed = false;
++	// YunoHost patch: allow for eval in JS scripts for YunoHost tile
++	protected $evalScriptAllowed = true;
+ 	/** @var array Domains from which scripts can get loaded */
+ 	protected $allowedScriptDomains = [
+ 		'\'self\'',