diff --git a/.deny.toml b/.deny.toml
index 623cea4..8fc9561 100644
--- a/.deny.toml
+++ b/.deny.toml
@@ -22,7 +22,7 @@ private = { ignore = true }
 
 [bans]
 multiple-versions = "warn"
-wildcards = "warn"
+wildcards = "deny"
 
 [[bans.features]]
 name = "serde_json"
@@ -38,6 +38,3 @@ deny = [
 [sources]
 unknown-registry = "deny"
 unknown-git = "deny"
-allow-git = [
-    "https://github.com/ruma/ruma",
-]
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 88dabda..e61ffef 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,7 +2,7 @@
 
 Breaking changes:
 
-- Upgrade ruma to 0.14.0.
+- Upgrade ruma to 0.14.1.
   - The `send_request`, `send_request_as` and `send_customized_request` of
     `Client` now have stricter bounds for the request. These bounds are
     compatible with all requests from ruma-client-api and ruma-appservice-api.
diff --git a/Cargo.toml b/Cargo.toml
index a9955fb..6e6cb18 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -42,12 +42,12 @@ hyper-rustls = { version = "0.27.1", optional = true, default-features = false }
 hyper-tls = { version = "0.6.0", optional = true }
 hyper-util = { version = "0.1.3", optional = true, features = ["client-legacy", "http1", "http2", "tokio"] }
 reqwest = { version = "0.12.4", optional = true, default-features = false }
-ruma = { git = "https://github.com/ruma/ruma", rev = "a67081e", features = ["api"] }
+ruma = { version = "0.14.1", features = ["api"] }
 serde_html_form = "0.2.0"
 tracing = { version = "0.1.30", default-features = false, features = ["std"] }
 
 [dev-dependencies]
-ruma = { git = "https://github.com/ruma/ruma", rev = "a67081e", features = ["client-api-c"] }
+ruma = { version = "0.14.1", features = ["client-api-c"] }
 tokio-stream = "0.1.8"
 
 [lints.rust]