diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml
index 528ac95..38bf5c0 100644
--- a/.github/workflows/zizmor.yml
+++ b/.github/workflows/zizmor.yml
@@ -3,6 +3,7 @@ name: Zizmor
 on:
   push:
     branches: [main]
+  merge_group:
   pull_request:
     branches: [main]
 
@@ -21,3 +22,6 @@ jobs:
         with:
           persist-credentials: false
       - uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3
+        with:
+          advanced-security: ${{ github.event_name == 'push' && 'true' || 'false' }}
+          min-severity: low