diff --git a/oci/grafana/.trivyignore b/oci/grafana/.trivyignore
index e2df8506..064923cf 100644
--- a/oci/grafana/.trivyignore
+++ b/oci/grafana/.trivyignore
@@ -14,3 +14,5 @@ GHSA-m425-mq94-257g
 CVE-2023-49568
 # github.com/go-git/go-git/v5 - Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
 CVE-2023-49569
+# github.com/cloudflare/circl - CIRCL's Kyber: timing side-channel (kyberslash2)
+GHSA-9763-4f94-gfch
diff --git a/oci/grafana/image.yaml b/oci/grafana/image.yaml
index 7c35eceb..6feb6efc 100644
--- a/oci/grafana/image.yaml
+++ b/oci/grafana/image.yaml
@@ -1,18 +1,18 @@
 version: 1
 upload:
   - source: canonical/grafana-rock
-    commit: 56e5cb3cb06166e219afdfa5ba55103e453572ce
-    directory: 9.5.3
+    commit: d83119eaeb2ce953bb3d9f3edffbd5011b956230
+    directory: 10.3.1
     release:
-      9.5.3-22.04:
-        end-of-life: "2025-01-10T00:00:00Z"
+      10.3.1-22.04:
+        end-of-life: "2025-01-26T00:00:00Z"
         risks:
           - stable
-      9.5-22.04:
-        end-of-life: "2025-01-10T00:00:00Z"
+      10.3-22.04:
+        end-of-life: "2025-01-26T00:00:00Z"
         risks:
           - stable
-      9-22.04:
-        end-of-life: "2025-01-10T00:00:00Z"
+      10-22.04:
+        end-of-life: "2025-01-26T00:00:00Z"
         risks:
           - stable