diff --git a/.github/workflows/static-code-analysis.yml b/.github/workflows/static-code-analysis.yml
index 3873ddc..f6c6495 100644
--- a/.github/workflows/static-code-analysis.yml
+++ b/.github/workflows/static-code-analysis.yml
@@ -42,7 +42,6 @@ jobs:
         run: composer run psalm:ci -- --monochrome --no-progress --output-format=github --update-baseline --report=results.sarif
 
       - name: Show potential changes in Psalm baseline
-        working-directory: epubviewer
         if: always()
         run: git diff -- . ':!lib/composer'
 
@@ -50,7 +49,7 @@ jobs:
         if: always()
         uses: github/codeql-action/upload-sarif@v3
         with:
-          sarif_file: apps/epubviewer/results.sarif
+          sarif_file: results.sarif
 
   static-code-analysis-security:
     runs-on: ubuntu-latest
@@ -90,8 +89,8 @@ jobs:
       - name: Psalm taint analysis
         run: composer run psalm -- --monochrome --no-progress --output-format=github --report=results.sarif --taint-analysis
 
-          #      - name: Upload Security Analysis results to GitHub
-          #        if: always()
-          #        uses: github/codeql-action/upload-sarif@v3
-          #        with:
-          #          sarif_file: results.sarif
+      - name: Upload Security Analysis results to GitHub
+        if: always()
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: results.sarif