diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 0095d43..4f1cea9 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -43,3 +43,4 @@ jobs:
     - uses: EmbarkStudios/cargo-deny-action@v1
       with:
         command: check ${{ matrix.checks }}
+        rust-version: "1.85.0"
diff --git a/Cargo.toml b/Cargo.toml
index 1d3171e..3f1d969 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -14,7 +14,7 @@ base64 = "0.22.1"
 ciborium = "0.2.0"
 cose-rust = "0.1.2"
 hex = "0.4.3"
-jsonwebtoken = "9"
+jsonwebtoken = { version = "10", features = ["aws_lc_rs"] }
 lazy_static = "1.5.0"
 openssl = "0.10.54"
 phf = {version = "0.13.1", features = ["macros", "serde"]}
diff --git a/deny.toml b/deny.toml
index ed224ae..a00cf2b 100644
--- a/deny.toml
+++ b/deny.toml
@@ -112,6 +112,7 @@ allow = [
     #"Apache-2.0 WITH LLVM-exception",
     # Considered Copyleft, but permitted in this project
     "MPL-2.0",
+    "BSD-3-Clause"
 ]
 # List of explicitly disallowed licenses
 # See https://spdx.org/licenses/ for list of possible licenses