diff --git a/modules/nixos/services/yt-dlp.nix b/modules/nixos/services/yt-dlp.nix
index 1cdec11a..86a17220 100644
--- a/modules/nixos/services/yt-dlp.nix
+++ b/modules/nixos/services/yt-dlp.nix
@@ -126,6 +126,14 @@ in {
           } ${lib.escapeShellArgs value.urls}
         '';
         startAt = value.startAt;
+        serviceConfig = {
+          NoNewPrivileges = true;
+          PrivateTmp = true;
+          ProtectControlGroup = true;
+          ProtectClock = true;
+          ProtectKernelModule = true;
+          ProtectKernelLogs = true;
+        };
       }) cfg.jobs;
   };
 }