diff --git a/trivy.yaml b/trivy.yaml
index acaf9bd34c0..1333a602ab9 100644
--- a/trivy.yaml
+++ b/trivy.yaml
@@ -1,7 +1,7 @@
 package:
   name: trivy
-  version: 0.42.0
-  epoch: 1
+  version: 0.42.1
+  epoch: 0
   description: Simple and comprehensive vulnerability scanner for containers
   copyright:
     - license: Apache-2.0
@@ -17,7 +17,7 @@ pipeline:
   - uses: fetch
     with:
       uri: https://github.com/aquasecurity/trivy/archive/v${{package.version}}/trivy-${{package.version}}.tar.gz
-      expected-sha512: 81b28dbaa0f2a56ef9d04543c01a8efa35295fdad4fa2c577b86af48c2a855e6c1ea61638d35a535b28e5092276bf6164ca35b084b3f5c2dd4081792828e5046
+      expected-sha512: 9ad9641097787e40da2918e1e70722788e4b4c781bee837eaae3a3ea84b7571093ecfae984b58bf3ac9c962b97d3abdd563ebc2c539c0637b8812ea37a227c51
 
   - runs: |
       CGO_ENABLED=0 go build \