From f8a93df1da2ee5c1d92dced40f1ace3471d00d6e Mon Sep 17 00:00:00 2001
From: Chris Lopez <112721475+chrisvlopez@users.noreply.github.com>
Date: Wed, 13 May 2026 12:10:09 -0700
Subject: [PATCH] Update dependency review workflow with new GHSA IDs

---
 .github/workflows/dependency-review.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index ae0bcf9..f5dfa87 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -209,8 +209,12 @@ jobs:
           # unsupported by us).
           # filelock: https://github.com/advisories/GHSA-w853-jp5j-5j7f
           # filelock: https://github.com/advisories/GHSA-qmgc-5h2g-mvrw
+          # filelock: https://github.com/advisories/GHSA-5v7r-6r5c-r473
+          # filelock: https://github.com/advisories/GHSA-j47w-4g3g-c36v
           allow-ghsas: >-
             GHSA-w853-jp5j-5j7f,
-            GHSA-qmgc-5h2g-mvrw
+            GHSA-qmgc-5h2g-mvrw,
+            GHSA-5v7r-6r5c-r473,
+            GHSA-j47w-4g3g-c36v,
 
           comment-summary-in-pr: on-failure