diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 21ceb139..cc68c8a0 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -165,13 +165,13 @@ clippy:
   script:
     - cargo clippy --color=always --all --all-features --all-targets -- -A clippy::redundant_pattern_matching -A clippy::single_match -A clippy::cast_lossless -D warnings
 
-audit:
+deny:
   extends: .img-stable
   stage: 'extras'
   only:
     - schedules
   script:
-    - cargo audit --deny-warnings
+    - cargo deny check
 
 outdated:
   extends: .img-stable
diff --git a/deny.toml b/deny.toml
new file mode 100644
index 00000000..8fd2a0d5
--- /dev/null
+++ b/deny.toml
@@ -0,0 +1,56 @@
+[advisories]
+db-path = "~/.cargo/advisory-db"
+db-url = "https://github.com/rustsec/advisory-db"
+vulnerability = "deny"
+unmaintained = "warn"
+notice = "warn"
+ignore = []
+
+[licenses]
+unlicensed = "deny"
+allow = [
+  "Apache-2.0",
+]
+deny = [
+  "GPL-1.0",
+  "GPL-2.0",
+  "GPL-3.0",
+  "AGPL-1.0",
+  "AGPL-3.0",
+]
+copyleft = "allow"
+allow-osi-fsf-free = "either"
+confidence-threshold = 0.8
+
+[bans]
+multiple-versions = "warn"
+highlight = "all"
+
+skip-tree = [
+  # Need to upgrade rusoto dep: https://gitlab.freedesktop.org/gstreamer/gst-plugins-rs/-/merge_requests/312
+  { name = "gst-plugin-rusoto" },
+  { name = "rusoto_core" },
+  # Metadeps needs to update error-chain: https://github.com/joshtriplett/metadeps/pull/12
+  { name = "metadeps", depth = 2 },
+  # Need a dav1d release: https://github.com/rust-av/dav1d-rs/issues/30
+  { name = "dav1d-sys" }
+]
+
+[sources]
+unknown-registry = "deny"
+unknown-git = "deny"
+allow-git = [
+  "https://gitlab.freedesktop.org/gstreamer/gstreamer-rs",
+  "https://gitlab.freedesktop.org/gstreamer/gstreamer-rs-sys",
+  "https://github.com/gtk-rs/sys",
+  "https://github.com/gtk-rs/glib",
+  "https://github.com/gtk-rs/gio",
+  "https://github.com/gtk-rs/cairo",
+  "https://github.com/gtk-rs/pango",
+  "https://github.com/gtk-rs/atk",
+  "https://github.com/gtk-rs/gdk-pixbuf",
+  "https://github.com/gtk-rs/gdk",
+  "https://github.com/gtk-rs/gtk",
+  "https://github.com/fengalin/tokio",
+  "https://github.com/rust-av/flavors",
+]