diff --git a/.woodpecker.yml b/.woodpecker.yml
index 50b61df..6585825 100644
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@@ -12,61 +12,7 @@ steps:
         from_secret: container_registry_password
       dockerfile: Dockerfile
     when:
-      - event: [push, tag]
-
-  scan_image:
-    image: aquasec/trivy
-    environment:
-      TRIVY_TOKEN:
-        from_secret: trivy_token
-      TRIVY_URL:
-        from_secret: trivy_url
-    commands:
-      - |
-        env TRIVY_DISABLE_VEX_NOTICE=1 \
-        trivy image \
-              --server $TRIVY_URL \
-              --token $TRIVY_TOKEN \
-              --quiet \
-              --exit-code 1 \
-              $FORGE_NAME/$CI_REPO:$CI_COMMIT_SHA 
-    when:
-      - event: [push, tag]
-
-  generate_sbom:
-    image: quay.io/wollud1969/woodpecker-helper:0.5.1
-    environment:
-      TRIVY_TOKEN:
-        from_secret: trivy_token
-      TRIVY_URL:
-        from_secret: trivy_url
-      DTRACK_API_KEY:
-        from_secret: dtrack_api_key
-      DTRACK_API_URL:
-        from_secret: dtrack_api_url
-    commands:
-      - HOME=/home/`id -nu`
-      - TAG="${CI_COMMIT_TAG:-$CI_COMMIT_SHA}"
-      - |
-        trivy image \
-              --server $TRIVY_URL \
-              --token $TRIVY_TOKEN \
-              --format cyclonedx \
-              --scanners license \
-              --output /tmp/sbom.xml \
-              $FORGE_NAME/$CI_REPO:$CI_COMMIT_SHA
-      - cat /tmp/sbom.xml
-      - |
-        curl -X "POST" \
-             -H "Content-Type: multipart/form-data" \
-             -H "X-Api-Key: $DTRACK_API_KEY" \
-             -F "autoCreate=true" \
-             -F "projectName=$CI_REPO" \
-             -F "projectVersion=$TAG" \
-             -F "bom=@/tmp/sbom.xml"\
-             "$DTRACK_API_URL/api/v1/bom"
-    when:
-      - event: [tag]
+      - event: tag
 
   build:
     image: plugins/kaniko
@@ -82,4 +28,4 @@ steps:
         from_secret: quay_password
       dockerfile: Dockerfile
     when:
-      - event: [tag]
+      - event: tag