From b287c6cae1aec165a018139b532f29478245422a Mon Sep 17 00:00:00 2001
From: Mark Prins <1165786+mprins@users.noreply.github.com>
Date: Mon, 17 Nov 2025 13:00:31 +0100
Subject: [PATCH 1/2] Replace deprecated deny-licenses option with
 allow-licenses

---
 .github/workflows/qa.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/qa.yml b/.github/workflows/qa.yml
index 55973367b..1fa5a80fd 100644
--- a/.github/workflows/qa.yml
+++ b/.github/workflows/qa.yml
@@ -27,8 +27,10 @@ jobs:
         uses: actions/dependency-review-action@v4
         with:
           allow-dependencies-licenses: pkg:maven/org.eclipse.angus/jakarta.mail@2.0.4?type=jar
-          deny-licenses: GPL-2.0+, AGPL-3.0+
+          allow-licenses: MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, LGPL-2.1-only, EPL-2.0, EPL-1.0
+          fail-on-severity: low
           comment-summary-in-pr: on-failure
+          allow-ghsas: GHSA-qh8g-58pp-2wxh
 
       - name: 'Set up JDK'
         uses: actions/setup-java@v5

From 46b255071400d3e85576883c32a6cee9cec119c9 Mon Sep 17 00:00:00 2001
From: Mark Prins <1165786+mprins@users.noreply.github.com>
Date: Thu, 20 Nov 2025 11:26:32 +0100
Subject: [PATCH 2/2] Change comment summary in PR from on-failure to always

---
 .github/workflows/qa.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/qa.yml b/.github/workflows/qa.yml
index 1fa5a80fd..9cbcd65d2 100644
--- a/.github/workflows/qa.yml
+++ b/.github/workflows/qa.yml
@@ -29,7 +29,7 @@ jobs:
           allow-dependencies-licenses: pkg:maven/org.eclipse.angus/jakarta.mail@2.0.4?type=jar
           allow-licenses: MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, LGPL-2.1-only, EPL-2.0, EPL-1.0
           fail-on-severity: low
-          comment-summary-in-pr: on-failure
+          comment-summary-in-pr: always
           allow-ghsas: GHSA-qh8g-58pp-2wxh
 
       - name: 'Set up JDK'