diff --git a/deny.toml b/deny.toml
index 33e74a8d..9f2152fd 100644
--- a/deny.toml
+++ b/deny.toml
@@ -11,43 +11,14 @@ deny = []
 copyleft = "warn"
 allow-osi-fsf-free = "either"
 confidence-threshold = 0.8
-exceptions = [
-    # ring uses code from multiple libraries but all with permissive licenses
-    # https://tldrlegal.com/license/openssl-license-(openssl)
-    { allow = ["ISC", "MIT", "OpenSSL"], name = "ring" },
-
-]
-
-[[licenses.clarify]]
-name = "ring"
-# SPDX considers OpenSSL to encompass both the OpenSSL and SSLeay licenses
-# https://spdx.org/licenses/OpenSSL.html
-# ISC - Both BoringSSL and ring use this for their new files
-# MIT - "Files in third_party/ have their own licenses, as described therein. The MIT
-# license, for third_party/fiat, which, unlike other third_party directories, is
-# compiled into non-test libraries, is included below."
-# OpenSSL - Obviously
-expression = "ISC AND MIT AND OpenSSL"
-license-files = [
-    { path = "LICENSE", hash = 0xbd0eed23 },
-]
 
 [bans]
 multiple-versions = "deny"
 highlight = "all"
 skip-tree = [
-    # these crates are only used in examples
-    { name = "sqlx" },
-    { name = "async-graphql" },
-    { name = "axum-server" },
-    # remove when tungstenite has had a new release
-    # https://github.com/snapview/tungstenite-rs/issues/262
-    { name = "tungstenite" },
-]
-skip = [
-    { name = "spin", version = "=0.5.2" },
-    # old version pulled in by reqwest which is only a dev dependency
-    { name = "tokio-util", version = "=0.6.10" },
+    # currently duplicated through mio & parking_lot_core
+    # https://github.com/tokio-rs/mio/pull/1624 will fix that
+    { name = "windows-sys" },
 ]
 
 [sources]