diff --git a/provisioner/hcp-sbom/provisioner.go b/provisioner/hcp-sbom/provisioner.go
index cddb9b1f2..2815c6657 100644
--- a/provisioner/hcp-sbom/provisioner.go
+++ b/provisioner/hcp-sbom/provisioner.go
@@ -116,7 +116,10 @@ func (p *Provisioner) downloadAndValidateSBOM(
 		ui.Errorf("validation failed for SBOM file: %s", err)
 		return err
 	}
-	reader.Seek(0, io.SeekStart)
+	_, err = reader.Seek(0, io.SeekStart)
+	if err != nil {
+		return err
+	}
 
 	// SBOM for Packer
 	pkrDst, err := p.getPackerDestination(generatedData)
@@ -128,7 +131,10 @@ func (p *Provisioner) downloadAndValidateSBOM(
 	if err != nil {
 		return fmt.Errorf("failed to download Packer SBOM: %s", err)
 	}
-	reader.Seek(0, io.SeekStart)
+	_, err = reader.Seek(0, io.SeekStart)
+	if err != nil {
+		return err
+	}
 	log.Printf("Packer SBOM file successfully downloaded to: %s\n", pkrDst)
 
 	// SBOM for User
diff --git a/provisioner/hcp-sbom/validate.go b/provisioner/hcp-sbom/validate.go
index 35b6299bb..372d61507 100644
--- a/provisioner/hcp-sbom/validate.go
+++ b/provisioner/hcp-sbom/validate.go
@@ -3,8 +3,10 @@ package hcp_sbom
 import (
 	"bytes"
 	"fmt"
+
 	"github.com/CycloneDX/cyclonedx-go"
 	spdxjson "github.com/spdx/tools-golang/json"
+
 	"io"
 )