diff --git a/index.js b/index.js
index f1eb31f..81c9e7b 100644
--- a/index.js
+++ b/index.js
@@ -530,7 +530,7 @@ function vulnerabilities2SARIFResByPackage(data) {
           {
               physicalLocation: {
                   artifactLocation: {
-                      uri: data.result.metadata.pullString,
+                      uri: `file:///${data.result.metadata.pullString}`,
                       uriBaseId: "ROOTPATH"
                   }
               },
diff --git a/package.json b/package.json
index 00c07da..30e8984 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "secure-inline-scan-action",
-  "version": "5.1.0",
+  "version": "5.1.1",
   "description": "This actions performs image analysis on locally built container image and posts the result of the analysis to Sysdig Secure.",
   "main": "index.js",
   "scripts": {