diff --git a/.github/workflows/cve-scanning-maven.yml b/.github/workflows/cve-scanning-maven.yml
index e2387717e..a92918fec 100644
--- a/.github/workflows/cve-scanning-maven.yml
+++ b/.github/workflows/cve-scanning-maven.yml
@@ -1,4 +1,4 @@
-name: CVE Scanning for Maven
+name: CVE Scanning for Maven Projects
 
 on:
   workflow_dispatch:
@@ -21,6 +21,10 @@ jobs:
     strategy:
       matrix:
         java-version: [ '21' ]
+        module-folder: [
+          'translator',
+          'calm-hub'
+        ]
     steps:
       - name: Checkout
         uses: actions/checkout@v4
@@ -34,6 +38,7 @@ jobs:
 
       - name: Build with Maven
         run: mvn verify
+        working-directory: ${{ matrix.module-folder }}
 
       - name: Depcheck
         uses: dependency-check/Dependency-Check_Action@main
@@ -41,18 +46,18 @@ jobs:
         env:
           JAVA_HOME: /opt/jdk
         with:
-          project: 'root'
-          path: '.'
+          project: '${{ matrix.module-folder }}'
+          path: '${{ matrix.module-folder }}'
           format: 'HTML'
-          out: 'dependency-reports' # this is the default, no need to specify unless you wish to override it
+          out: '${{ matrix.module-folder }}-reports' # this is the default, no need to specify unless you wish to override it
           args: >
-            --suppression .github/maven-cve-ignore-list.xml
-            --failOnCVSS 5
-            --enableRetired
+              --suppression .github/maven-cve-ignore-list.xml
+              --failOnCVSS 5
+              --enableRetired
 
       - name: Upload Test results
         if: ${{ always() }}
         uses: actions/upload-artifact@v4
         with:
-          name: Depcheck Report ${{ github.job }}
-          path: dependency-reports
\ No newline at end of file
+          name: Depcheck report ${{ github.job }} ${{ matrix.module-folder }}
+          path: ${{ github.workspace }}/${{ matrix.module-folder }}-reports