diff --git a/trivy.yaml b/trivy.yaml
index 0385c100a4..595244a472 100644
--- a/trivy.yaml
+++ b/trivy.yaml
@@ -29,4 +29,8 @@ ignorefile: .trivyignore.yaml
 vulnerability:
   ignore-unfixed: true
 db:
-  repository: 'public.ecr.aws/aquasecurity/trivy-db'
+  repository: 'ghcr.io/opencrvs/trivy-db'
+  java-repository: 'ghcr.io/opencrvs/trivy-java-db'
+
+policies-bundle:
+  repository: 'ghcr.io/opencrvs/trivy-checks'