diff --git a/package-lock.json b/package-lock.json
index adddaec..c3a2fec 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@checkdigit/github-actions",
-  "version": "4.0.1",
+  "version": "4.0.2",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@checkdigit/github-actions",
-      "version": "4.0.1",
+      "version": "4.0.2",
       "license": "MIT",
       "dependencies": {
         "@actions/core": "^3.0.0",
diff --git a/package.json b/package.json
index deeb7f0..6189f78 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@checkdigit/github-actions",
-  "version": "4.0.1",
+  "version": "4.0.2",
   "description": " Provides supporting operations for github action builds.",
   "homepage": "https://github.com/checkdigit/github-actions#readme",
   "bugs": {
diff --git a/src/check-imports/packages-not-allowed.spec.ts b/src/check-imports/packages-not-allowed.spec.ts
index 19781fd..488a640 100644
--- a/src/check-imports/packages-not-allowed.spec.ts
+++ b/src/check-imports/packages-not-allowed.spec.ts
@@ -5,7 +5,7 @@ import { describe, it } from 'node:test';
 
 import * as semver from 'semver';
 
-import notAllowed, { SECURITY_RISK } from './packages-not-allowed.ts';
+import notAllowed from './packages-not-allowed.ts';
 
 describe('packages not allowed', async () => {
   it('contains a list of names, valid ranges, and reasons', async () => {
@@ -15,13 +15,4 @@ describe('packages not allowed', async () => {
       assert.ok(reason.length > 10); // Ten is an arbitrary length to ensure a full sentence used in the reason.
     });
   });
-  it('contains axios as a fully blocked dependency', async () => {
-    assert.ok(
-      notAllowed.some(
-        ([name, range, reason]) =>
-          name === 'axios' && range === '*' && reason === SECURITY_RISK,
-      ),
-      'Should contain axios@* as not allowed',
-    );
-  });
 });
diff --git a/src/check-imports/packages-not-allowed.ts b/src/check-imports/packages-not-allowed.ts
index 88f4a6f..1424bff 100644
--- a/src/check-imports/packages-not-allowed.ts
+++ b/src/check-imports/packages-not-allowed.ts
@@ -11,13 +11,8 @@ export type NotAllowed = [Name, Range, Reason];
 // const UNSTABLE =
 //   'Higher versions are unstable and break tests in Check Digit services. This can be removed from the Not Allowed list when stability improves.';
 
-export const SECURITY_RISK =
-  'Blocked by security policy due to security concerns'; /*
-  This is the list of packages that are not allowed to be imported.
- */
 const notAllowed: NotAllowed[] = [
   // ['@aws-sdk/client-*', '>3.387.0', UNSTABLE], // example of an unstable package
-  ['axios', '*', SECURITY_RISK],
 ];
 
 export default notAllowed;