diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index b9d6d20..d678448 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -2,7 +2,7 @@ name: 'Dependency Review'
 on: [pull_request]
 
 permissions:
-  contents: read
+  pull-requests: write
 
 jobs:
   dependency-review:
@@ -12,3 +12,7 @@ jobs:
         uses: actions/checkout@v4
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@v4
+        with:
+          fail-on-severity: low
+          deny-licenses: LGPL-2.0, BSD-2-Clause
+          comment-summary-in-pr: on-failure
diff --git a/package-lock.json b/package-lock.json
index b235d48..679172b 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -61,6 +61,7 @@
         "helmet": "^4.0.0",
         "html-entities": "^1.3.1",
         "i18n": "^0.11.1",
+        "jose": "^4.15.4",
         "js-yaml": "^3.14.0",
         "jsonwebtoken": "0.4.0",
         "jssha": "^3.1.1",
@@ -13113,6 +13114,11 @@
         "@sideway/pinpoint": "^2.0.0"
       }
     },
+    "node_modules/jose": {
+      "version": "4.15.4",
+      "resolved": "https://lpg.jfrog.io/artifactory/api/npm/virt-lpg-npm/jose/-/jose-4.15.4.tgz",
+      "integrity": "sha512-W+oqK4H+r5sITxfxpSU+MMdr/YSWGvgZMQDIsNoBDGGy4i7GBPTtvFKibQzW06n3U3TqHjhvBJsirShsEJ6eeQ=="
+    },
     "node_modules/js-stringify": {
       "version": "1.0.2",
       "resolved": "https://lpg.jfrog.io/artifactory/api/npm/virt-lpg-npm/js-stringify/-/js-stringify-1.0.2.tgz",
diff --git a/package.json b/package.json
index 37aa1b8..154d5dc 100644
--- a/package.json
+++ b/package.json
@@ -150,6 +150,7 @@
     "helmet": "^4.0.0",
     "html-entities": "^1.3.1",
     "i18n": "^0.11.1",
+    "jose": "^4.15.4",
     "js-yaml": "^3.14.0",
     "jsonwebtoken": "0.4.0",
     "jssha": "^3.1.1",