diff --git a/security-actions/scan-docker-image/action.yml b/security-actions/scan-docker-image/action.yml
index 086490b1..7aae0888 100644
--- a/security-actions/scan-docker-image/action.yml
+++ b/security-actions/scan-docker-image/action.yml
@@ -118,6 +118,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: sarif
         fail-build: 'false'
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     # Don't fail during report generation
@@ -130,6 +131,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: json
         fail-build: 'false'
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     - name: Check vulnerability analysis report existence
@@ -199,6 +201,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: table
         fail-build: ${{ steps.meta.outputs.global_enforce_build_failure == 'true' && steps.meta.outputs.global_enforce_build_failure || inputs.fail_build }}
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     - name: Inspect docker-cis report