diff --git a/.drone.yml b/.drone.yml
index 438fb6b..54332c3 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -6,5 +6,7 @@ steps:
   image: rust:1.76-slim
   commands:
   - rustup component add rustfmt
+  - cargo install --locked cargo deny
   - cargo build
   - cargo test --verbose
+  - cargo deny check licenses
diff --git a/deny.toml b/deny.toml
new file mode 100644
index 0000000..10de21a
--- /dev/null
+++ b/deny.toml
@@ -0,0 +1,59 @@
+# Root options
+
+# The graph table configures how the dependency graph is constructed and thus
+# which crates the checks are performed against
+[graph]
+all-features = false
+no-default-features = false
+
+[output]
+feature-depth = 1
+
+[licenses]
+version = 2
+unused-allowed-license = "allow"
+confidence-threshold = 0.95
+allow = [
+      "GPL-1.0",
+      "GPL-2.0",
+      "GPL-3.0",
+      "LGPL-2.0",
+      "LGPL-2.1",
+      "LGPL-3.0",
+      "AGPL-3.0",
+      "EUPL-1.2",
+      "MIT",
+      "Apache-2.0",
+      "MPL-2.0",
+      "ISC",
+      "Unicode-DFS-2016",
+      "OpenSSL",
+      "BSD-3-Clause"
+]
+
+# Some crates don't have (easily) machine readable licensing information,
+# adding a clarification entry for it allows you to manually specify the
+# licensing information
+[[licenses.clarify]]
+crate = "ring"
+expression = "MIT AND ISC AND OpenSSL"
+license-files = [
+  { path = "LICENSE", hash = 0xbd0eed23 }
+]
+
+[[licenses.clarify]]
+crate = "webpki"
+expression = "ISC"
+license-files = [
+    { path = "LICENSE", hash = 0x001c7e6c },
+]
+
+# This section is considered when running `cargo deny check bans`.
+# More documentation about the 'bans' section can be found here:
+# https://embarkstudios.github.io/cargo-deny/checks/bans/cfg.html
+[bans]
+multiple-versions = "warn"
+wildcards = "allow"
+highlight = "all"
+workspace-default-features = "allow"
+external-default-features = "allow"
\ No newline at end of file