diff --git a/README.md b/README.md
index 8f4e366f..17c2e4fa 100644
--- a/README.md
+++ b/README.md
@@ -133,10 +133,11 @@ seCureLI is configurable via a .secureli.yaml file present in the root of your l
 ### top level
 
 | Key                | Description                                                                                                        |
-| ------------------ | ------------------------------------------------------------------------------------------------------------------ |
+|--------------------|--------------------------------------------------------------------------------------------------------------------|
 | `repo_files`       | Affects how seCureLI will interpret the repository, both for language analysis and as it executes various linters. |
 | `echo`             | Adjusts how seCureLI will print information to the user.                                                           |
 | `language_support` | Affects seCureLI's language analysis and support phase.                                                            |
+| `pii_scanner`      | Includes options for seCureLI's PII scanner                                                                        |
 | `telemetry`        | Includes options for seCureLI telemetry/api logging                                                                |
 
 ### repo_files
@@ -153,6 +154,12 @@ seCureLI is configurable via a .secureli.yaml file present in the root of your l
 | ------- | -------------------------------------------------------------------------------------------------------------------------------------------------- |
 | `level` | The log level to display to the user. Defaults to ERROR, which includes `error` and `print` messages, without including warnings or info messages. |
 
+### pii_scanner
+
+| Key                  | Description                                                    |
+|----------------------|----------------------------------------------------------------|
+| `ignored_extensions` | The extensions of files to ignore in addition to the defaults. |
+
 ### telemetry
 
 | Key       | Description                                                                                                                                                                              |
diff --git a/secureli/container.py b/secureli/container.py
index 3fca156c..c6d55903 100644
--- a/secureli/container.py
+++ b/secureli/container.py
@@ -141,6 +141,7 @@ class Container(containers.DeclarativeContainer):
         PiiScannerService,
         repo_files=repo_files_repository,
         echo=echo,
+        ignored_extensions=config.pii_scanner.ignored_extensions,
     )
 
     updater_service = providers.Factory(
diff --git a/secureli/modules/pii_scanner/pii_scanner.py b/secureli/modules/pii_scanner/pii_scanner.py
index b8c7a77e..522691a2 100644
--- a/secureli/modules/pii_scanner/pii_scanner.py
+++ b/secureli/modules/pii_scanner/pii_scanner.py
@@ -35,9 +35,14 @@ def __init__(
         self,
         repo_files: RepoFilesRepository,
         echo: EchoAbstraction,
+        ignored_extensions: list[str],
     ):
         self.repo_files = repo_files
         self.echo = echo
+        self.ignored_extensions = ignored_extensions
+        if ignored_extensions != IGNORED_EXTENSIONS:
+            # Make sure the original ignored extensions are always present
+            self.ignored_extensions = list(set(ignored_extensions + IGNORED_EXTENSIONS))
 
     def scan_repo(
         self,
@@ -96,7 +101,7 @@ def scan_repo(
 
     def _file_extension_excluded(self, filename) -> bool:
         _, file_extension = os.path.splitext(filename)
-        if file_extension in IGNORED_EXTENSIONS:
+        if file_extension in self.ignored_extensions:
             return True
 
         return False
diff --git a/secureli/modules/shared/models/repository.py b/secureli/modules/shared/models/repository.py
index 2615f13c..68ff23a3 100644
--- a/secureli/modules/shared/models/repository.py
+++ b/secureli/modules/shared/models/repository.py
@@ -1,11 +1,20 @@
-from enum import Enum
 from typing import Optional
 from pydantic import BaseModel, BaseSettings, Field
+
+from secureli.modules.shared.consts.pii import IGNORED_EXTENSIONS
 from secureli.modules.shared.consts.repository import default_ignored_extensions
 from secureli.modules.shared.models.echo import Level
 from secureli.modules.shared.models.language import LanguageSupportSettings
 
 
+class PiiScannerSettings(BaseSettings):
+    """
+    Settings that adjust how seCureLI evaluates the PII of the consuming repository.
+    """
+
+    ignored_extensions: list[str] = Field(default=IGNORED_EXTENSIONS)
+
+
 class RepoFilesSettings(BaseSettings):
     """
     Settings that adjust how seCureLI evaluates the consuming repository.
@@ -76,3 +85,4 @@ class SecureliFile(BaseModel):
     echo: Optional[EchoSettings] = None
     language_support: Optional[LanguageSupportSettings] = Field(default=None)
     telemetry: Optional[TelemetrySettings] = None
+    pii_scanner: Optional[PiiScannerSettings] = None
diff --git a/secureli/settings.py b/secureli/settings.py
index c7a540b7..25297817 100644
--- a/secureli/settings.py
+++ b/secureli/settings.py
@@ -39,6 +39,7 @@ class Settings(pydantic.BaseSettings):
     echo: repo_settings.EchoSettings = repo_settings.EchoSettings()
     language_support: LanguageSupportSettings = LanguageSupportSettings()
     telemetry: repo_settings.TelemetrySettings = repo_settings.TelemetrySettings()
+    pii_scanner: repo_settings.PiiScannerSettings = repo_settings.PiiScannerSettings()
 
     class Config:
         env_file_encoding = "utf-8"
diff --git a/tests/modules/pii_scanner/test_pii_scanner_service.py b/tests/modules/pii_scanner/test_pii_scanner_service.py
index 36761cb7..275de976 100644
--- a/tests/modules/pii_scanner/test_pii_scanner_service.py
+++ b/tests/modules/pii_scanner/test_pii_scanner_service.py
@@ -5,6 +5,7 @@
 import contextlib, io
 from pathlib import Path
 from secureli.modules.pii_scanner.pii_scanner import PiiScannerService
+from secureli.modules.shared.consts.pii import IGNORED_EXTENSIONS
 from secureli.modules.shared.models.scan import ScanMode
 
 
@@ -51,7 +52,18 @@ def mock_re(mocker: MockerFixture) -> MagicMock:
 def pii_scanner_service(
     mock_repo_files_repository: MagicMock, mock_echo: MagicMock
 ) -> PiiScannerService:
-    return PiiScannerService(mock_repo_files_repository, mock_echo)
+    return PiiScannerService(
+        mock_repo_files_repository, mock_echo, ignored_extensions=IGNORED_EXTENSIONS
+    )
+
+
+@pytest.fixture()
+def pii_scanner_service_alternate_extensions(
+    mock_repo_files_repository: MagicMock, mock_echo: MagicMock
+) -> PiiScannerService:
+    return PiiScannerService(
+        mock_repo_files_repository, mock_echo, ignored_extensions=["go.mod", "go.sum"]
+    )
 
 
 def test_that_pii_scanner_service_finds_potential_pii(
@@ -127,3 +139,14 @@ def test_that_pii_scanner_prints_when_exceptions_encountered(
 
     mock_echo.print.assert_called_once()
     assert "Error PII scanning" in mock_echo.print.call_args.args[0]
+
+
+def test_that_pii_scanner_accepts_alternate_ignored_extensions(
+    pii_scanner_service_alternate_extensions: PiiScannerService,
+    mock_open_fn: MagicMock,
+    mock_echo: MagicMock,
+):
+    # Assert that both the custom extensions and the standard defaults
+    # are present in the initialized ignored extensions.
+    assert "go.mod" in pii_scanner_service_alternate_extensions.ignored_extensions
+    assert ".jpeg" in pii_scanner_service_alternate_extensions.ignored_extensions