diff --git a/.abf.yml b/.abf.yml
index 4037cc3..d66549b 100644
--- a/.abf.yml
+++ b/.abf.yml
@@ -1,2 +1,2 @@
 sources:
-  dolt-1.40.3.tar.gz: f40b6c92cbd279183bac0d0357ac92e12a905768
+  dolt-1.41.1.tar.gz: 3514b14a4f9f962e1c92559cedb7e8cea974ac4e
diff --git a/dolt.spec b/dolt.spec
index 7d6fed1..316f7a9 100644
--- a/dolt.spec
+++ b/dolt.spec
@@ -1,8 +1,9 @@
 %define		debug %nil
 %define		debug_package %nil
+%define     secscan 1
 
 Name:		dolt
-Version:	1.40.3
+Version:	1.41.1
 Release:	1
 Summary:	Git for Data
 URL:		https://github.com/dolthub/dolt
@@ -13,6 +14,11 @@ BuildRequires:	go >= 1.22
 BuildRequires:	git-core
 BuildRequires:	upx
 
+%if %{secscan}
+BuildRequires:  clamav
+BuildRequires:  trivy
+%endif
+
 %description
 Dolt is a SQL database that you can fork, clone, branch,
 merge, push and pull just like a Git repository. Connect
@@ -27,6 +33,11 @@ them to a remote, or merge your teammate's changes
 # fix permissions
 find . -perm 0755 -type f -exec chmod 0644 {} \;
 
+%if %{secscan}
+clamscan -ir .
+trivy fs --scanners vuln --format cosign-vuln .
+%endif
+
 %build
 export GOPROXY=https://proxy.golang.org/cached-only
 pushd go
@@ -44,3 +55,9 @@ install -Dm0755 bin/%{name} %{buildroot}%{_bindir}/%{name}
 %{_bindir}/%{name}
 
 
+%check
+go test ./...
+
+%if %{secscan}
+clamscan -ir %{buildroot}
+%endif
\ No newline at end of file