diff --git a/src/Form/SecKitSettingsForm.php b/src/Form/SecKitSettingsForm.php
index f908077..240e819 100644
--- a/src/Form/SecKitSettingsForm.php
+++ b/src/Form/SecKitSettingsForm.php
@@ -192,7 +192,7 @@ class SecKitSettingsForm extends ConfigFormBase {
       '#maxlength' => 1024,
       '#default_value' => $config->get('seckit_xss.csp.default-src'),
       '#title' => 'default-src',
-      '#description' => $this->t("Specify security policy for all types of content, which are not specified further (frame-ancestors excepted). Default is 'self'."),
+      '#description' => $this->t("Specify security policy for all types of content, which are not specified further (frame-ancestors excepted). Default is empty, meaning the default-src directive won't be present in the generated header."),
     ];
     // CSP script-src directive.
     $form['seckit_xss']['csp']['script-src'] = [