diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml
index 025dede..fe2b382 100644
--- a/.github/workflows/pull_request.yml
+++ b/.github/workflows/pull_request.yml
@@ -14,7 +14,7 @@ jobs:
       verify_published_from_main_image: false
   dependabot-auto-approve-and-merge:
     needs: quality_checks
-    uses: NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml@d215f841eb18b803e339e4ed597ed1f30e086e17
+    uses: NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml@141907b215220e95e3ed3811d0fe8fa18675dbed
     secrets:
       AUTOMERGE_APP_ID: ${{ secrets.AUTOMERGE_APP_ID }}
       AUTOMERGE_PEM: ${{ secrets.AUTOMERGE_PEM }}
diff --git a/.trivyignore.yaml b/.trivyignore.yaml
index 3efb730..0eb58b0 100644
--- a/.trivyignore.yaml
+++ b/.trivyignore.yaml
@@ -62,3 +62,12 @@ vulnerabilities:
   - id: CVE-2026-29786
     statement: node-tar requrired dependency, and not a relelveant attack vector
     expired_at: 2026-06-01
+  - id: CVE-2026-31802
+    statement: node-tar requrired dependency, and not a relelveant attack vector
+    expired_at: 2026-06-01
+  - id: CVE-2026-25679
+    statement: asdf go stdlib
+    expired_at: 2026-06-01
+  - id: CVE-2026-27142
+    statement: asdf go stdlib
+    expired_at: 2026-06-01