diff --git a/.github/workflows/goreleaser.yml b/.github/workflows/goreleaser.yml
index 7320904ae23..91e6c16e18d 100644
--- a/.github/workflows/goreleaser.yml
+++ b/.github/workflows/goreleaser.yml
@@ -55,9 +55,7 @@ jobs:
         run: |
           set -euo pipefail
           checksum_file=$(echo "$ARTIFACTS" | jq -r '.[] | select (.type=="Checksum") | .path')
-          if $checksum_file != *"osv-reporter"
-            echo "hashes=$(cat $checksum_file | base64 -w0)" >> "$GITHUB_OUTPUT"
-          fi
+          echo "hashes=$(cat $checksum_file | base64 -w0)" >> "$GITHUB_OUTPUT"
   provenance:
     needs: [goreleaser]
     permissions:
diff --git a/.goreleaser.yml b/.goreleaser.yml
index 9975a2cc130..4068c431b50 100644
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -116,7 +116,9 @@ docker_manifests:
 
 archives:
   - format: binary
-    name_template: "{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}"
+    name_template: "{{ .Binary }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}"
+    builds:
+      - osv-scanner
 checksum:
   name_template: "{{ .ProjectName }}_{{ .Version }}_SHA256SUMS"
   algorithm: sha256