diff --git a/_service b/_service
index f093c06..09d2ae7 100644
--- a/_service
+++ b/_service
@@ -3,7 +3,7 @@
     <param name="url">https://github.com/RustSec/rustsec.git</param>
     <param name="versionformat">@PARENT_TAG@~git@TAG_OFFSET@.%h</param>
     <param name="scm">git</param>
-    <param name="revision">cargo-audit/v0.17.4</param>
+    <param name="revision">cargo-audit/v0.17.5</param>
     <param name="match-tag">cargo-audit*</param>
     <param name="versionrewrite-pattern">.*v(\d+\.\d+\.\d+)</param>
     <param name="versionrewrite-replacement">\1</param>
@@ -14,11 +14,11 @@
   <service mode="disabled" name="tar" />
   <service mode="disabled" name="recompress">
     <param name="file">*.tar</param>
-    <param name="compression">xz</param>
+    <param name="compression">zst</param>
   </service>
   <service name="cargo_vendor" mode="disabled">
      <param name="srcdir">rustsec</param>
-     <param name="compression">xz</param>
+     <param name="compression">zst</param>
      <param name="update">true</param>
   </service>
   <service name="cargo_audit" mode="disabled">
diff --git a/_servicedata b/_servicedata
index 994b3dc..61344db 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/RustSec/rustsec.git</param>
-              <param name="changesrevision">0b05e18c0f719076d56942e6b0e1e13dec11a428</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">dc8ec71098bd202c9e1177329f512173a4ffa029</param></service></servicedata>
\ No newline at end of file
diff --git a/cargo-audit.changes b/cargo-audit.changes
index bb43a50..f403197 100644
--- a/cargo-audit.changes
+++ b/cargo-audit.changes
@@ -1,3 +1,76 @@
+-------------------------------------------------------------------
+Mon Mar 27 02:52:07 UTC 2023 - william.brown@suse.com
+
+- Update to version 0.17.5~git0.dc8ec71:
+  * Set the release date in changelog
+  * Bump `cargo-audit` version
+  * Bump `rustsec` crate requirement to 0.26.5, to mandate the version with the fixed libgit2
+  * Fill in the CHANGELOG
+  * Do not run all tests from the default feature set twice
+  * cargo fmt
+  * Fix version reporting
+  * Update openssl in Cargo.lock files
+  * More changelog entries
+  * cargo fmt
+  * Fix type inference error
+  * Fill in changelog
+  * Bump version to 0.26.5
+  * build(deps): bump regex from 1.7.1 to 1.7.2
+  * build(deps): bump rust-embed from 6.4.2 to 6.6.0
+  * build(deps): bump chrono from 0.4.23 to 0.4.24
+  * Bump crates-index to 0.19
+  * rustsec: Fix git2 via cargo-edit-9 fork
+  * fix(cargo-audit): set clap bin_name to cargo (#824)
+  * fix(cargo-audit): Better the formatting of severity output
+  * Add vulnerability severity to the cargo-audit report presenter
+  * test(cargo-audit): Ensure informational warnings are shown by default
+  * fix(cargo-audit): Add unsound and notice to default informational warnings
+  * Resolves #622
+  * fix(cargo-audit): Remove latest commit signature check
+  * Re-enable MacOS CI with `--all-features`
+  * Bump `platforms` version
+  * Regenerate the `platforms` crate for rustc 1.69.0-nightly (8996ea93b 2023-02-09)
+  * build(deps): bump toml from 0.7.1 to 0.7.2 (#811)
+  * build(deps): bump petgraph from 0.6.2 to 0.6.3 (#810)
+  * Use new feature/dependency syntax (#809)
+  * build(deps): bump toml from 0.7.0 to 0.7.1 (#806)
+  * build(deps): bump toml from 0.6.0 to 0.7.0 (#805)
+  * admin: bump `chrono` to v0.4.23 (#803)
+  * build(deps): bump atom_syndication from 0.11.0 to 0.12.0 (#777)
+  * build(deps): bump comrak from 0.15.0 to 0.16.0 (#802)
+  * build(deps): bump toml from 0.5.9 to 0.6.0 (#797)
+  * Bump `toml` crate dependency to v0.6 (#800)
+  * Cargo.lock: bump dependencies (#799)
+  * build(deps): bump regex from 1.6.0 to 1.7.1 (#785)
+  * cvss: bump MSRV to 1.60 (#798)
+  * build(deps): bump fs-err from 2.8.1 to 2.9.0 (#744)
+  * build(deps): bump termcolor from 1.1.3 to 1.2.0 (#791)
+  * cargo-audit: refactor OS-specific CI configuration (#796)
+  * cargo-lock: use `Display` for `io::ErrorKind`; MSRV 1.60 (#794)
+  * cargo-lock: mark `SourceKind` as `#[non_exhaustive]` (#793)
+  * cargo-lock: support sparse registry references in Lockfiles (#780)
+  * release rustsec-admin 0.8.5 (#789)
+  * release rustsec-admin 0.8.5 (#788)
+  * Escape search term to prevent reflected XSS (#787)
+  * Add top-level severity field to OSV advisories
+  * cargo-lock: implement From<Name> for String (#776)
+  * build(deps): bump comrak from 0.14.0 to 0.15.0 (#760)
+  * Bump rust-embed from 6.4.2 to 6.5.0 (#766)
+  * Bump semver from 1.0.14 to 1.0.16 (#772)
+  * Bump softprops/action-gh-release (#770)
+  * cargo-lock v8.0.3 (#768)
+  * Fixed inconsistency in encoding lockfiles where there's only one registry for all packages (#767)
+  * Prepare rustsec-admin release 0.8.4 (#765)
+  * release rustsec 0.26.4
+  * Make URL a hyperlink
+  * Add CHANGELOG.md entry
+  * Store crates.io index versions as strings instead of semver
+  * Revert "Skip invalid semver in crates.io index"
+  * Skip invalid semver in crates.io index
+  * Appease clippy
+  * Appease clippy
+  * Add publication date
+
 -------------------------------------------------------------------
 Wed Nov 09 00:01:18 UTC 2022 - william.brown@suse.com
 
diff --git a/cargo-audit.spec b/cargo-audit.spec
index 2188ac4..5462a75 100644
--- a/cargo-audit.spec
+++ b/cargo-audit.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package cargo-audit
 #
-# Copyright (c) 2022 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -20,14 +20,14 @@
 %global workspace_name rustsec
 
 Name:           cargo-audit
-Version:        0.17.4~git0.0b05e18
+Version:        0.17.5~git0.dc8ec71
 Release:        0
 Summary:        Audit rust sources for known security vulnerabilities
 License:        ( 0BSD OR MIT OR Apache-2.0 ) AND ( Apache-2.0 OR BSL-1.0 ) AND ( Apache-2.0 OR MIT ) AND ( MIT OR Zlib OR Apache-2.0 ) AND ( Unlicense OR MIT ) AND ( Zlib OR Apache-2.0 OR MIT ) AND Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND CC0-1.0 AND MIT AND MPL-2.0 AND MPL-2.0+
 Group:          Development/Languages/Rust
 URL:            https://github.com/RustSec/cargo-audit
-Source0:        %{workspace_name}-%{version}.tar.xz
-Source1:        vendor.tar.xz
+Source0:        %{workspace_name}-%{version}.tar.zst
+Source1:        vendor.tar.zst
 Source2:        cargo_config
 
 BuildRequires:  cargo-packaging
diff --git a/rustsec-0.17.4~git0.0b05e18.tar.xz b/rustsec-0.17.4~git0.0b05e18.tar.xz
deleted file mode 100644
index bb5245d..0000000
--- a/rustsec-0.17.4~git0.0b05e18.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:fafe07a09f8796015b3e8b72afd93f7f76953d6a1225aa1e5f36f05c3e089411
-size 554104
diff --git a/rustsec-0.17.5~git0.dc8ec71.tar.zst b/rustsec-0.17.5~git0.dc8ec71.tar.zst
new file mode 100644
index 0000000..6b01264
--- /dev/null
+++ b/rustsec-0.17.5~git0.dc8ec71.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3f8ed1a9bff3ba6ce78d5e28d9628cf6a3beaf94beece863322f5fb59b198ceb
+size 631148
diff --git a/vendor.tar.xz b/vendor.tar.xz
deleted file mode 100644
index 2e58455..0000000
--- a/vendor.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5f698fc584ba42016a57ece2507cd6ea1b0d90dc9ffe052bcbb22fc833b31d7e
-size 35249496
diff --git a/vendor.tar.zst b/vendor.tar.zst
new file mode 100644
index 0000000..2ef4676
--- /dev/null
+++ b/vendor.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:7b0ea9d085b1cf141333bf5da7c448ad073dbaaaca5b0edb8bf6023b5037bb92
+size 51430453