diff --git a/.yarnrc.yml b/.yarnrc.yml
index 7743481..8a56b7b 100644
--- a/.yarnrc.yml
+++ b/.yarnrc.yml
@@ -1,3 +1,8 @@
+# Allowlist for Git repositories that can be used as dependencies. We set it to
+# an empty array to disallow all Git dependencies, as we don't use any and they
+# can be a security risk.
+approvedGitRepositories: []
+
 compressionLevel: mixed
 
 enableGlobalCache: false
@@ -8,6 +13,10 @@ enableTelemetry: false
 
 nodeLinker: node-modules
 
+# Configure the NPM minimal age gate to 3 days, meaning packages must be at
+# least 3 days old to be installed.
+npmMinimalAgeGate: 4320 # 3 days (in minutes)
+
 plugins:
   - path: .yarn/plugins/@yarnpkg/plugin-allow-scripts.cjs
     spec: "https://raw.githubusercontent.com/LavaMoat/LavaMoat/main/packages/yarn-plugin-allow-scripts/bundles/@yarnpkg/plugin-allow-scripts.js"
diff --git a/package.json b/package.json
index 645417e..f99c46a 100644
--- a/package.json
+++ b/package.json
@@ -64,7 +64,7 @@
   "resolutions": {
     "@metamask/snaps-sdk": "^11.1.0"
   },
-  "packageManager": "yarn@4.9.1",
+  "packageManager": "yarn@4.17.0",
   "engines": {
     "node": ">= 20"
   },
diff --git a/yarn.lock b/yarn.lock
index d21ab40..2d839e4 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2,7 +2,7 @@
 # Manual changes might be lost - proceed with caution!
 
 __metadata:
-  version: 8
+  version: 10
   cacheKey: 10
 
 "@aashutoshrathi/word-wrap@npm:^1.2.3":