diff --git a/config/prod.settings.py b/config/prod.settings.py
index 6153e6f52b79030e58c33918da0aa2c386aa5982..05bee90847f2229a6f865f54ab46ebf754de79ec 100644
--- a/config/prod.settings.py
+++ b/config/prod.settings.py
@@ -24,6 +24,17 @@ APKINDEX_REPOSITORIES = {
     "3.11-main": "https://dl-cdn.alpinelinux.org/alpine/v3.11/main/x86_64/APKINDEX.tar.gz",
 }
 
+# repo -> uri
+SECURITY_REJECTIONS = {
+    "edge-main": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/main.yaml",
+    "edge-community": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/community.yaml",
+    "3.14-main": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/main.yaml",
+    "3.14-community": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/community.yaml",
+    "3.13-main": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/main.yaml",
+    "3.12-main": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/main.yaml",
+    "3.11-main": "https://gitlab.alpinelinux.org/kaniini/security-rejections/-/raw/master/main.yaml",
+}
+
 PACKAGE_EXCLUSIONS = [
     "alpine-base",
     "build-base",
diff --git a/docker-compose.yml b/docker-compose.yml
index aa71ace5906a1395cdad1898ea1959c8d400c96d..1c0378bb7c07cc71c4b93b1022e7c6078181e0f4 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -15,7 +15,7 @@ services:
     build:
       context: .
       args:
-        - SECFIXES_TRACKER_VERSION=0.3.2
+        - SECFIXES_TRACKER_VERSION=0.3.3
     ports:
       - 8080
   crond:
diff --git a/overlay/usr/local/bin/update-secfixes b/overlay/usr/local/bin/update-secfixes
index 058007edd653ee11858c4269564da2d97fe0f8f0..773f69f99f16f03322cf7a516817888726715e44 100755
--- a/overlay/usr/local/bin/update-secfixes
+++ b/overlay/usr/local/bin/update-secfixes
@@ -10,6 +10,7 @@ cd /home/python/secfixes-tracker
 flask import-nvd recent&
 flask import-apkindex&
 flask import-secfixes&
+flask import-rejections&
 
 wait