diff --git a/zarf.advisories.yaml b/zarf.advisories.yaml
index 3392276c6e..7882e52584 100644
--- a/zarf.advisories.yaml
+++ b/zarf.advisories.yaml
@@ -604,6 +604,10 @@ advisories:
             componentType: go-module
             componentLocation: /usr/bin/zarf
             scanner: grype
+      - timestamp: 2025-12-15T18:04:41Z
+        type: pending-upstream-fix
+        data:
+          note: The sigstore modules have tight interdependencies, meaning bumping the affected module's version results in in build failures. Upstream will need to release a version which integrates the fixed module version.
 
   - id: CGA-h3c6-m9gg-ffw2
     aliases:
@@ -838,6 +842,10 @@ advisories:
             componentType: go-module
             componentLocation: /usr/bin/zarf
             scanner: grype
+      - timestamp: 2025-12-15T18:04:41Z
+        type: pending-upstream-fix
+        data:
+          note: The sigstore modules have tight interdependencies, meaning bumping the affected module's version results in in build failures. Upstream will need to release a version which integrates the fixed module version.
 
   - id: CGA-p5c4-p5qh-qj2r
     aliases: