diff --git a/Jenkinsfile b/Jenkinsfile
index 55e703b..e66206f 100644
--- a/Jenkinsfile
+++ b/Jenkinsfile
@@ -53,7 +53,7 @@ spec:
         - name: workspace-volume
           mountPath: /home/jenkins/agent
     - name: quality-tools
-      image: registry.bstein.dev/bstein/quality-tools:sonar8.0.1-trivy0.70.0-arm64
+      image: registry.bstein.dev/bstein/quality-tools:sonar8.0.1-trivy0.70.0-db20260422-arm64
       command:
         - cat
       tty: true
@@ -162,7 +162,7 @@ PY
             set -euo pipefail
             mkdir -p build
             set +e
-            trivy fs --no-progress --format json --output build/trivy-fs.json --scanners vuln,secret,misconfig --severity HIGH,CRITICAL .
+            trivy fs --cache-dir "${TRIVY_CACHE_DIR}" --skip-db-update --timeout 5m --no-progress --format json --output build/trivy-fs.json --scanners vuln,secret,misconfig --severity HIGH,CRITICAL .
             trivy_rc=$?
             set -e
             if [ ! -s build/trivy-fs.json ]; then