diff --git a/.github/workflows/dependency-review.yaml b/.github/workflows/dependency-review.yaml
index db619b48..45ce2306 100644
--- a/.github/workflows/dependency-review.yaml
+++ b/.github/workflows/dependency-review.yaml
@@ -13,6 +13,12 @@ on:
     branches:
       - main
   workflow_call:
+    inputs:
+      allow-ghsas:
+        description: "Allowed GHSAs. Passed through to dependency-review-action"
+        default: ""
+        required: false
+        type: string
 
 jobs:
   dependency-review:
@@ -30,4 +36,5 @@ jobs:
         uses: actions/dependency-review-action@v3
         with:
           fail-on-severity: moderate
-          allow-licenses: 0BSD, Apache-2.0, BSD-2-Clause, BSD-2-Clause-FreeBSD, BSD-3-Clause, CC-BY-3.0, CC-BY-4.0, CC0-1.0, ISC, LGPL-2.1, MIT, MPL-2.0, ODC-By-1.0, OFL-1.1, Unicode-DFS-2016, Unlicense, (MIT OR Apache-2.0) AND Unicode-DFS-2016, Apache-2.0 AND BSD-3-Clause
\ No newline at end of file
+          allow-licenses: 0BSD, Apache-2.0, BSD-2-Clause, BSD-2-Clause-FreeBSD, BSD-3-Clause, CC-BY-3.0, CC-BY-4.0, CC0-1.0, ISC, LGPL-2.1, MIT, MPL-2.0, ODC-By-1.0, OFL-1.1, Unicode-DFS-2016, Unlicense, (MIT OR Apache-2.0) AND Unicode-DFS-2016, Apache-2.0 AND BSD-3-Clause
+          allow-ghsas: ${{ inputs.allow-ghsas }}