diff --git a/_service b/_service
index de11236..009a146 100644
--- a/_service
+++ b/_service
@@ -2,7 +2,7 @@
   <service name="tar_scm" mode="disabled">
     <param name="url">https://github.com/aquasecurity/trivy</param>
     <param name="scm">git</param>
-    <param name="revision">v0.17.2</param>
+    <param name="revision">v0.18.3</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>
diff --git a/_servicedata b/_servicedata
index c8c4ef2..4b32971 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/aquasecurity/trivy</param>
-              <param name="changesrevision">415e1d8ea3832b3f1807884b7c969b4d030d8098</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">85e45cad958c60245f848a9cf3bf103bb8efdd6e</param></service></servicedata>
\ No newline at end of file
diff --git a/trivy-0.17.2.tar.gz b/trivy-0.17.2.tar.gz
deleted file mode 100644
index 1307ca5..0000000
--- a/trivy-0.17.2.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:335be031765d2c9bc6c13f80a21df9ef1c52aa2e662890efb0ab51069adefcb0
-size 23042775
diff --git a/trivy-0.18.3.tar.gz b/trivy-0.18.3.tar.gz
new file mode 100644
index 0000000..51672c8
--- /dev/null
+++ b/trivy-0.18.3.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:efcc5f98f8bcefad21c94474b6f9951b1a8f5e35a6419af6f2752d9a79ad326d
+size 23044965
diff --git a/trivy.changes b/trivy.changes
index 587583f..34e67f9 100644
--- a/trivy.changes
+++ b/trivy.changes
@@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Mon Jun 07 19:14:07 UTC 2021 - dmueller@suse.com
+
+- Update to version 0.18.3:
+  * chore(ci): change to more granular tokens (#1014)
+  * chore(ci): add Go scanning and update dependencies (#1001)
+  * docs: Add HIGH severity to Trivy command in GitLab CI example to match comment (#1013)
+  * fix(image): disable go.sum scanning (#1007)
+  * fix(gomod): handle go.sum with an empty line (#1006)
+  * feat: prepare for config scanning (#1005)
+  * Clarify that dev dependencies are excluded (#986)
+  * Include target value in Sarif template ruleID (#991)
+  * chore(mkdocs): allow workflow_dispatch (#989)
+  * fix(vuln) unique vulnerabilities from different data sources (#984)
+  * feat(go): added support of gomod analyzer (#978)
+
 -------------------------------------------------------------------
 Mon May 03 10:04:22 UTC 2021 - dmueller@suse.com
 
diff --git a/trivy.spec b/trivy.spec
index 6aac656..30683de 100644
--- a/trivy.spec
+++ b/trivy.spec
@@ -19,7 +19,7 @@
 
 %global goipath github.com/aquasecurity/trivy
 Name:           trivy
-Version:        0.17.2
+Version:        0.18.3
 Release:        0
 Summary:        A Simple and Comprehensive Vulnerability Scanner for Containers
 License:        Apache-2.0
diff --git a/vendor.tar.gz b/vendor.tar.gz
index 4523c0b..2c48888 100644
--- a/vendor.tar.gz
+++ b/vendor.tar.gz
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:1a73c4c7c3a4c6da9474c43f76273a706d8a04acbfd2e225b0d08d3d1ad30dba
-size 12101744
+oid sha256:e937f40b4c01e48bde9897c208e0fa8b69de7681d0a255c109914834efbb0845
+size 12689014