diff --git a/.github/workflows/spotbugs-scan.yml b/.github/workflows/spotbugs-scan.yml
index 6de92e40..583eb78b 100644
--- a/.github/workflows/spotbugs-scan.yml
+++ b/.github/workflows/spotbugs-scan.yml
@@ -33,7 +33,9 @@ jobs:
       run: ./gradlew spotbugsRelease spotbugsMain
 
     - name: Fix SARIF
-      run: cat <<< $(jq '.runs |= map( if .taxonomies == [null] then .taxonomies = [] else . end)' ./build/spotbugs/spotbugs-support.sarif) > ./build/spotbugs/spotbugs-support.sarif
+      run: |
+        cat <<< $(jq '.runs |= map( if .taxonomies == [null] then .taxonomies = [] else . end)' ./build/spotbugs/spotbugs-support.sarif) > ./build/spotbugs/spotbugs-support.sarif
+        cat <<< $(jq '.runs[].results[].locations[].physicalLocation.artifactLocation.uri |= "core/src/main/java/" + .' ./build/spotbugs/spotbugs-core.sarif) > ./build/spotbugs/spotbugs-core.sarif
 
     - name: upload SARIF
       uses: github/codeql-action/upload-sarif@v2