diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index b23a03fa484..8ab4376129e 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -353,6 +353,13 @@ jobs:
           path: dist
       - name: Generate checksum file
         run: cd dist && sha256sum * > "k6-${VERSION}-checksums.txt"
+      - name: Anchore SBOM Action
+        continue-on-error: true
+        uses: anchore/sbom-action@v0.12.0
+        with:
+          artifact-name: k6-${{ env.VERSION }}-spdx.json
+          upload-release-assets: false
+          output-file: dist/k6-${{ env.VERSION }}-spdx.json
       - name: Create release
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/sbom-report.yml b/.github/workflows/sbom-report.yml
deleted file mode 100644
index 004225f6b62..00000000000
--- a/.github/workflows/sbom-report.yml
+++ /dev/null
@@ -1,20 +0,0 @@
-name: syft-sbom-ci
-
-on:
-  release:
-    types: [published]
-
-jobs:
-  syft-sbom:
-
-    runs-on: ubuntu-latest
-
-    steps:
-    - name: Checkout
-      uses: actions/checkout@v3
-        
-    - name: Anchore SBOM Action
-      uses: anchore/sbom-action@v0.12.0
-      with:
-         artifact-name: ${{ github.event.repository.name }}-spdx.json
-