diff --git a/.bundler-audit.yml b/.bundler-audit.yml
deleted file mode 100644
index 0671df390fe..00000000000
--- a/.bundler-audit.yml
+++ /dev/null
@@ -1,6 +0,0 @@
----
-ignore:
-  # devise-two-factor advisory about brute-forcing TOTP
-  # We have rate-limits on authentication endpoints in place (including second
-  # factor verification) since Mastodon v3.2.0
-  - CVE-2024-0227
diff --git a/.github/workflows/bundler-audit.yml b/.github/workflows/bundler-audit.yml
index 923abcd91c6..48f9d82933c 100644
--- a/.github/workflows/bundler-audit.yml
+++ b/.github/workflows/bundler-audit.yml
@@ -6,14 +6,12 @@ on:
     paths:
       - 'Gemfile*'
       - '.ruby-version'
-      - '.bundler-audit.yml'
       - '.github/workflows/bundler-audit.yml'
 
   pull_request:
     paths:
       - 'Gemfile*'
       - '.ruby-version'
-      - '.bundler-audit.yml'
       - '.github/workflows/bundler-audit.yml'
 
   schedule: