diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index a41c0314f40946cf744c1b0542be9215f055292b..e0f606d90f25249db2cba26348181384327620a8 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -10,7 +10,19 @@ unit-tests:
 
 vulnerability-scan:
   stage: "test"
-  allow_failure: true
+  allow_failure:
+    # https://docs.gitlab.com/ee/ci/yaml/README.html#allow_failureexit_codes
+    exit_codes:
+      # Allow *some* exit codes through without treating them as
+      # pipeline-failing conditions.
+      # https://github.com/flyingcircusio/vulnix/blob/master/doc/vulnix.1.md
+
+      # All found errors are whitelisted
+      - 1
+      # Vulnerabilities found, but still, please don't halt the build.
+      - 2
+
+
   script:
     - "ci-tools/vulnerability-scan security-report.txt"
   artifacts: