diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
index a356c73fff0e..635048872653 100644
--- a/.github/workflows/CI.yml
+++ b/.github/workflows/CI.yml
@@ -146,7 +146,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - uses: actions/checkout@v4
-    - uses: EmbarkStudios/cargo-deny-action@v1
+    - uses: EmbarkStudios/cargo-deny-action@v2
 
   generator:
     name: regen check
diff --git a/deny.toml b/deny.toml
index a5d6df178cac..2a4355436bf3 100644
--- a/deny.toml
+++ b/deny.toml
@@ -1,24 +1,22 @@
+[graph]
 exclude = [
     "gtk-rs-examples",
 ]
 
 [advisories]
+version = 2
 db-path = "~/.cargo/advisory-db"
 db-urls = ["https://github.com/rustsec/advisory-db"]
-vulnerability = "deny"
-unmaintained = "warn"
-notice = "warn"
 ignore = []
 
 [licenses]
-unlicensed = "deny"
+version = 2
 allow = [
   "MIT",
   "Apache-2.0",
+  "Apache-2.0 WITH LLVM-exception",
+  "Unicode-DFS-2016",
 ]
-copyleft = "deny"
-allow-osi-fsf-free = "either"
-default = "deny"
 confidence-threshold = 0.8
 
 [bans]