diff --git a/sigstore-java/build.gradle.kts b/sigstore-java/build.gradle.kts
index 6df10de9..480f42b7 100644
--- a/sigstore-java/build.gradle.kts
+++ b/sigstore-java/build.gradle.kts
@@ -40,7 +40,7 @@ dependencies {
     implementation("org.bouncycastle:bcutil-jdk18on:1.77")
     implementation("org.bouncycastle:bcpkix-jdk18on:1.77")
 
-    implementation(platform("com.google.oauth-client:google-oauth-client-bom:1.34.1"))
+    implementation(platform("com.google.oauth-client:google-oauth-client-bom:1.35.0"))
     implementation("com.google.oauth-client:google-oauth-client")
     implementation("com.google.oauth-client:google-oauth-client-jetty")
     implementation("com.google.oauth-client:google-oauth-client-java6")
diff --git a/sigstore-java/src/main/java/dev/sigstore/oidc/client/WebOidcClient.java b/sigstore-java/src/main/java/dev/sigstore/oidc/client/WebOidcClient.java
index 067312aa..f069e9b9 100644
--- a/sigstore-java/src/main/java/dev/sigstore/oidc/client/WebOidcClient.java
+++ b/sigstore-java/src/main/java/dev/sigstore/oidc/client/WebOidcClient.java
@@ -171,7 +171,7 @@ public OidcToken getIDToken() throws OidcException {
               .setIssuer(issuer)
               .setCertificatesLocation(endpoints.getJwksUri())
               .build();
-      if (!idTokenVerifier.verify(parsedIdToken)) {
+      if (!idTokenVerifier.verifyOrThrow(parsedIdToken)) {
         throw new OidcException("id token could not be verified");
       }
     } catch (IOException e) {