diff --git a/_service b/_service
index 93914b9..cfbe8fc 100644
--- a/_service
+++ b/_service
@@ -2,7 +2,7 @@
   <service name="tar_scm" mode="manual">
     <param name="url">https://github.com/aquasecurity/trivy</param>
     <param name="scm">git</param>
-    <param name="revision">v0.68.1</param>
+    <param name="revision">v0.68.2</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>
diff --git a/_servicedata b/_servicedata
index ff87fae..f98fbe6 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/aquasecurity/trivy</param>
-              <param name="changesrevision">96290ae3fb1d974fd2f9ec7e37cee43f6b7f1511</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">0c40a8d4b9b943f1b679a20f8ba3cb61c94831de</param></service></servicedata>
\ No newline at end of file
diff --git a/trivy-0.68.1.tar.zst b/trivy-0.68.1.tar.zst
deleted file mode 100644
index 2454dfd..0000000
--- a/trivy-0.68.1.tar.zst
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:de79a513a649ad495e0f118f91d453ffbc598ab3231eb10fcf2b0d8818c159b5
-size 52162645
diff --git a/trivy-0.68.2.tar.zst b/trivy-0.68.2.tar.zst
new file mode 100644
index 0000000..b9539e7
--- /dev/null
+++ b/trivy-0.68.2.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:82d48451586e8b766015af96cda1d07262a8e57cfa4d6abf48fb408f0965801c
+size 52162194
diff --git a/trivy.changes b/trivy.changes
index fafbd87..c2bb732 100644
--- a/trivy.changes
+++ b/trivy.changes
@@ -1,7 +1,18 @@
+-------------------------------------------------------------------
+Mon Dec 29 09:58:28 UTC 2025 - Dirk Müller <dmueller@suse.com>
+
+- Update to version 0.68.2:
+  * release: v0.68.2 [release/v0.68] (#9950)
+  * fix(deps): bump alpine from `3.22.1` to `3.23.0` [backport: release/v0.68] (#9949)
+  * ci: enable `check-latest` for `setup-go` [backport: release/v0.68] (#9946)
+
 -------------------------------------------------------------------
 Wed Dec 03 10:23:46 UTC 2025 - Dirk Müller <dmueller@suse.com>
 
-- Update to version 0.68.1:
+- Update to version 0.68.1 (bsc#1251363, CVE-2025-47911,
+  bsc#1251547, CVE-2025-58190, bsc#1253512, CVE-2025-47913,
+  bsc#1253512, CVE-2025-47913, bsc#1253786, CVE-2025-58181,
+  bsc#1253977, CVE-2025-47914):
   * release: v0.68.1 [main] (#9867)
   * fix: update cosing settings for GoReleaser after bumping cosing to v3 (#9863)
   * chore(deps): bump the testcontainers group with 2 updates (#9506)
diff --git a/trivy.spec b/trivy.spec
index afce6f0..18b5ebf 100644
--- a/trivy.spec
+++ b/trivy.spec
@@ -17,7 +17,7 @@
 
 
 Name:           trivy
-Version:        0.68.1
+Version:        0.68.2
 Release:        0
 Summary:        A Simple and Comprehensive Vulnerability Scanner for Containers
 License:        Apache-2.0
diff --git a/vendor.tar.zst b/vendor.tar.zst
index 4384efd..5c671d4 100644
--- a/vendor.tar.zst
+++ b/vendor.tar.zst
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:eecc750ffe8a863533cde96e35f6e85317ea60b9be56a4095e4167a78cc7f49c
-size 42000488
+oid sha256:908be8c2861c1027c232ff3d01bf6d0287b966f761018f26d23d767a9e9eee95
+size 42422889