diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 7a79b4c..69483dd 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -17,8 +17,7 @@ jobs:
           fetch-depth: 0
           persist-credentials: false
 
-      # zizmor: ignore[cache-poisoning] -- mise verifies tool checksums via mise.lock
-      - uses: jdx/mise-action@5228313ee0372e111a38da051671ca30fc5a96db # v3.6.3
+      - uses: jdx/mise-action@5228313ee0372e111a38da051671ca30fc5a96db # v3.6.3 
         with:
           version: 2026.3.8
 
diff --git a/.github/zizmor.yaml b/.github/zizmor.yaml
new file mode 100644
index 0000000..4826ac7
--- /dev/null
+++ b/.github/zizmor.yaml
@@ -0,0 +1,4 @@
+rules:
+  cache-poisoning:
+    ignore:
+      - release.yml # cache poisoning on mise is handled with a lockfile