diff --git a/.github/workflows/qa.yml b/.github/workflows/qa.yml
index 55973367b..9cbcd65d2 100644
--- a/.github/workflows/qa.yml
+++ b/.github/workflows/qa.yml
@@ -27,8 +27,10 @@ jobs:
         uses: actions/dependency-review-action@v4
         with:
           allow-dependencies-licenses: pkg:maven/org.eclipse.angus/jakarta.mail@2.0.4?type=jar
-          deny-licenses: GPL-2.0+, AGPL-3.0+
-          comment-summary-in-pr: on-failure
+          allow-licenses: MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, LGPL-2.1-only, EPL-2.0, EPL-1.0
+          fail-on-severity: low
+          comment-summary-in-pr: always
+          allow-ghsas: GHSA-qh8g-58pp-2wxh
 
       - name: 'Set up JDK'
         uses: actions/setup-java@v5