diff --git a/.ds.baseline b/.ds.baseline
index 82ab59b8d..d91a2c576 100644
--- a/.ds.baseline
+++ b/.ds.baseline
@@ -169,7 +169,7 @@
         "filename": "app/config.py",
         "hashed_secret": "577a4c667e4af8682ca431857214b3a920883efc",
         "is_verified": false,
-        "line_number": 111,
+        "line_number": 112,
         "is_secret": false
       }
     ],
diff --git a/app/config.py b/app/config.py
index fc9248e05..97c3ab9ba 100644
--- a/app/config.py
+++ b/app/config.py
@@ -1,3 +1,4 @@
+from concurrent.futures import ThreadPoolExecutor
 import json
 from os import getenv
 
@@ -146,6 +147,9 @@ class Production(Config):
 class Staging(Production):
     HEADER_COLOUR = "#00ff00"  # $green
 
+    # Attempting to enable CSRF in staging with the hopes that we can duplicate errors.
+    WTF_CSRF_ENABLED = True
+
 
 class E2ETest(Staging):
     """
@@ -165,8 +169,8 @@ class E2ETest(Staging):
     # Borrowed from test environment
     TESTING = True
 
-    # Attempting to enable CSRF in staging with the hopes that we can duplicate errors.
-    WTF_CSRF_ENABLED = True
+    # Disabling CSRF for e2e because things break (a11y & dynamic scan)
+    WTF_CSRF_ENABLED = False
 
     # buckets - mirror staging
     CSV_UPLOAD_BUCKET = cloud_config.s3_credentials(