diff --git a/_service b/_service
index 10b2ed0..6caaa7b 100644
--- a/_service
+++ b/_service
@@ -2,7 +2,7 @@
   <service name="tar_scm" mode="disabled">
     <param name="url">https://github.com/aquasecurity/trivy</param>
     <param name="scm">git</param>
-    <param name="revision">v0.36.0</param>
+    <param name="revision">v0.36.1</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>
diff --git a/_servicedata b/_servicedata
index 7437d77..bb551a6 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/aquasecurity/trivy</param>
-              <param name="changesrevision">4813cf5cfdaf22d3caf8ca2a2cc89448a5ef994f</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">9039df4993f1e574a4f0a8e630bbeea16dfed10d</param></service></servicedata>
\ No newline at end of file
diff --git a/trivy-0.36.0.tar.zst b/trivy-0.36.0.tar.zst
deleted file mode 100644
index ea31dab..0000000
--- a/trivy-0.36.0.tar.zst
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4f9b9228e1550d5d00a26b439e860883fcb91e9975ebef3e15b6ebae08a20d67
-size 44456148
diff --git a/trivy-0.36.1.tar.zst b/trivy-0.36.1.tar.zst
new file mode 100644
index 0000000..406f895
--- /dev/null
+++ b/trivy-0.36.1.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:039b9dbe05389fe77050c1d2800e24f89d9946da1e39a524ff6bc845f71f08db
+size 44456224
diff --git a/trivy.changes b/trivy.changes
index c93843b..c5f3000 100644
--- a/trivy.changes
+++ b/trivy.changes
@@ -1,3 +1,22 @@
+-------------------------------------------------------------------
+Thu Jan 05 12:08:53 UTC 2023 - dmueller@suse.com
+
+- Update to version 0.36.1:
+  * fix(deps): fix errors on yarn.lock files that contain local file reference (#3384)
+  * feat(flag): early fail when the format is invalid (#3370)
+  * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.136 to 1.44.171 (#3366)
+  * docs(aws): fix broken links (#3374)
+  * chore(deps): bump actions/stale from 6 to 7 (#3360)
+  * chore(deps): bump helm/kind-action from 1.4.0 to 1.5.0 (#3359)
+  * chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.6.0 to 0.7.0 (#2974)
+  * chore(deps): bump azure/setup-helm from 3.4 to 3.5 (#3358)
+  * chore(deps): bump github.com/moby/buildkit from 0.10.4 to 0.10.6 (#3173)
+  * chore(deps): bump goreleaser/goreleaser-action from 3 to 4 (#3357)
+  * chore(deps): bump github.com/containerd/containerd from 1.6.8 to 1.6.14 (#3367)
+  * chore(go): updates wazero to v1.0.0-pre.7 (#3355)
+  * chore(deps): bump golang.org/x/text from 0.4.0 to 0.5.0 (#3362)
+  * chore(deps): bump actions/cache from 3.0.11 to 3.2.2 (#3356)
+
 -------------------------------------------------------------------
 Mon Jan 02 08:27:43 UTC 2023 - dmueller@suse.com
 
diff --git a/trivy.spec b/trivy.spec
index 8a5898d..be95d72 100644
--- a/trivy.spec
+++ b/trivy.spec
@@ -19,7 +19,7 @@
 
 %global goipath github.com/aquasecurity/trivy
 Name:           trivy
-Version:        0.36.0
+Version:        0.36.1
 Release:        0
 Summary:        A Simple and Comprehensive Vulnerability Scanner for Containers
 License:        Apache-2.0
diff --git a/vendor.tar.zst b/vendor.tar.zst
index 75930e9..ec6fd59 100644
--- a/vendor.tar.zst
+++ b/vendor.tar.zst
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:317857c487739ab6917291c3eb8fcf68b3e9401d028a0d454b51717f3ec5d090
-size 49721038
+oid sha256:243bb7d457484d277752839ec722958e24bd3d908fefc5535ac621f0471d50a8
+size 49702671