diff --git a/.goose/check-manifest/manifest.json b/.goose/check-manifest/manifest.json
index 86c8693..57c67c7 100644
--- a/.goose/check-manifest/manifest.json
+++ b/.goose/check-manifest/manifest.json
@@ -1 +1 @@
-{"source_dependencies":["check-manifest","setuptools-scm==8.1.0","setuptools==71.1.0","wheel==0.43.0"],"lock_files":[{"path":"requirements.txt","checksum":"sha256:8749b703c2c10ee6508cc3285d57c4bd5b44daa3fe6a844bf755e549ea7afe40"}],"checksum":"sha256:f3088465a7c13f8bcd9ca759210e41d5d09e65b6a1200f0136c49622936a59e5"}
\ No newline at end of file
+{"source_dependencies":["check-manifest","setuptools-scm==8.1.0","setuptools==71.1.0","wheel==0.43.0"],"lock_files":[{"path":"requirements.txt","checksum":"sha256:3050ab63aed177bcbd529a5177f0522dc8ccfb9aec8aaa2ac15fbcc3b863d78e"}],"checksum":"sha256:111589011440e4274f2fed1ba0277eff8d2a5b4a86248beada203f3c69afbe25"}
\ No newline at end of file
diff --git a/.goose/check-manifest/requirements.txt b/.goose/check-manifest/requirements.txt
index f1100ec..c44ba06 100644
--- a/.goose/check-manifest/requirements.txt
+++ b/.goose/check-manifest/requirements.txt
@@ -1,6 +1,6 @@
-build==1.2.1 \
-    --hash=sha256:526263f4870c26f26c433545579475377b2b7588b6f1eac76a001e873ae3e19d \
-    --hash=sha256:75e10f767a433d9a86e50d83f418e83efc18ede923ee5ff7df93b6cb0306c5d4
+build==1.2.2 \
+    --hash=sha256:119b2fb462adef986483438377a13b2f42064a2a3a4161f24a0cca698a07ac8c \
+    --hash=sha256:277ccc71619d98afdd841a0e96ac9fe1593b823af481d3b0cea748e8894e0613
 check-manifest==0.49 \
     --hash=sha256:058cd30057714c39b96ce4d83f254fc770e3145c7b1932b5940b4e3efb5521ef \
     --hash=sha256:64a640445542cf226919657c7b78d02d9c1ca5b1c25d7e66e0e1ff325060f416
@@ -17,7 +17,7 @@ wheel==0.43.0 \
     --hash=sha256:465ef92c69fa5c5da2d1cf8ac40559a8c940886afcef87dcf14b9470862f1d85 \
     --hash=sha256:55c570405f142630c6b9f72fe09d9b67cf1477fcf543ae5b8dcb1f5b7377da81
 
-# WARNING: The following packages were not pinned, but pip requires them to be
-# pinned when the requirements file includes hashes and the requirement is not
-# satisfied by a package already installed. Consider using the --allow-unsafe flag.
-# setuptools
+# The following packages are considered to be unsafe in a requirements file:
+setuptools==71.1.0 \
+    --hash=sha256:032d42ee9fb536e33087fb66cac5f840eb9391ed05637b3f2a76a7c8fb477936 \
+    --hash=sha256:33874fdc59b3188304b2e7c80d9029097ea31627180896fb549c578ceb8a0855
diff --git a/goose.yaml b/goose.yaml
index beed38c..265b71c 100644
--- a/goose.yaml
+++ b/goose.yaml
@@ -28,14 +28,12 @@ environments:
       - prettier
 
 hooks:
-  # Commented out until there's a fix for pinning setuptools.
-  # https://github.com/antonagestam/goose/issues/30
-  # - id: check-manifest
-  #   environment: check-manifest
-  #   command: check-manifest
-  #   parameterize: false
-  #   read_only: true
-  #   args: [--no-build-isolation]
+  - id: check-manifest
+    environment: check-manifest
+    command: check-manifest
+    parameterize: false
+    read_only: true
+    args: [--no-build-isolation]
 
   - id: prettier
     environment: node