diff --git a/_service b/_service
index 465ac08..6a6489b 100644
--- a/_service
+++ b/_service
@@ -3,7 +3,7 @@
     <param name="url">https://github.com/anchore/syft</param>
     <param name="scm">git</param>
     <param name="exclude">.git</param>
-    <param name="revision">v0.74.0</param>
+    <param name="revision">v0.74.1</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="changesgenerate">enable</param>
     <param name="versionrewrite-pattern">v(.*)</param>
@@ -16,6 +16,6 @@
     <param name="compression">gz</param>
   </service>
   <service name="go_modules" mode="disabled">
-    <param name="archive">syft-0.74.0.tar.gz</param>
+    <param name="archive">syft-0.74.1.tar.gz</param>
   </service>
 </services>
diff --git a/_servicedata b/_servicedata
index 7d023e9..874c3c7 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/anchore/syft</param>
-              <param name="changesrevision">5f90d0371873faf5eb8f2e748909b32294be6263</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">41cbbe09b205e3b80e8a57d4f7a509b5f938557d</param></service></servicedata>
\ No newline at end of file
diff --git a/syft-0.74.0.tar.gz b/syft-0.74.0.tar.gz
deleted file mode 100644
index eac652d..0000000
--- a/syft-0.74.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d8ff6c62a1701124900b9a65ed0a609dbcb48d711ebcc24daa132f4d74d7b940
-size 5511052
diff --git a/syft-0.74.1.tar.gz b/syft-0.74.1.tar.gz
new file mode 100644
index 0000000..804a21b
--- /dev/null
+++ b/syft-0.74.1.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e0cbaa87137a930ca170df3c59362ab5ffaca0f1a98d534f6badbcb010fed7c7
+size 5515061
diff --git a/syft.changes b/syft.changes
index 58bbacf..b6c5441 100644
--- a/syft.changes
+++ b/syft.changes
@@ -1,3 +1,23 @@
+-------------------------------------------------------------------
+Thu Mar 09 15:31:12 UTC 2023 - kastl@b1-systems.de
+
+- Update to version 0.74.1:
+  * Update syft bootstrap tools to latest versions. (#1658)
+  * fix: improved Python binary detection (#1648)
+  * fix: suppress some known incorrect vendor candidates for npm
+    CPEs (#1659)
+  * fix: sanitize SPDX LicenseRefs (#1657)
+  * chore(deps): bump golang.org/x/mod from 0.8.0 to 0.9.0 (#1655)
+  * chore(deps): bump golang.org/x/net from 0.7.0 to 0.8.0 (#1653)
+  * chore(deps): bump github.com/spf13/afero from 1.9.4 to 1.9.5
+    (#1654)
+  * chore(deps): bump golang.org/x/term from 0.5.0 to 0.6.0 (#1656)
+  * fix: dotnet PURL types are invalid (#1649)
+  * feat: disable cpe vendor wildcards to reduce false positives
+    (#1647)
+  * read relative etc/apk/repositories for alpine version when no
+    OS provided (#1615)
+
 -------------------------------------------------------------------
 Fri Mar 03 05:40:08 UTC 2023 - kastl@b1-systems.de
 
diff --git a/syft.spec b/syft.spec
index a31f652..18b1696 100644
--- a/syft.spec
+++ b/syft.spec
@@ -19,7 +19,7 @@
 %define __arch_install_post export NO_BRP_STRIP_DEBUG=true
 
 Name:           syft
-Version:        0.74.0
+Version:        0.74.1
 Release:        0
 Summary:        CLI tool and library for generating a Software Bill of Materials
 License:        Apache-2.0
diff --git a/vendor.tar.gz b/vendor.tar.gz
index b18b24a..c333017 100644
--- a/vendor.tar.gz
+++ b/vendor.tar.gz
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:3991ae3a0b50c63a8f88dc247e5bfdb71d6674045ed0454df5c13a142c945896
-size 40672322
+oid sha256:8e1886219ae4ff1e04d4fc9c43ca5a0958b2c423de14d90c752ab812c7b4c09a
+size 40675287