diff --git a/.github/workflows/check-cves.yml b/.github/workflows/check-cves.yml
index b6cc21e677..6079283c3c 100644
--- a/.github/workflows/check-cves.yml
+++ b/.github/workflows/check-cves.yml
@@ -13,6 +13,7 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Scan current project
+      id: scan
       uses: anchore/scan-action@v6
       with:
         path: "."
@@ -21,7 +22,7 @@ jobs:
         output-format: json
 
     - name: Print scan results
-      run: .github/scripts/format-cve-scan-results.sh results.json > $GITHUB_STEP_SUMMARY
+      run: .github/scripts/format-cve-scan-results.sh ${{ steps.scan.outputs.json }} > $GITHUB_STEP_SUMMARY
       if: always()
 
     - name: Archive CVE scan results
@@ -29,4 +30,4 @@ jobs:
       if: always()
       with:
         name: cve-scan-results-${{ github.sha }}-${{ github.run_id }}-${{ github.run_number }}
-        path: results.json
\ No newline at end of file
+        path: ${{ steps.scan.outputs.json }}