diff --git a/encryption-check.sh b/encryption-check.sh
index a1ad606..5d8185e 100755
--- a/encryption-check.sh
+++ b/encryption-check.sh
@@ -5,8 +5,12 @@ set -e
 has_error=0
 for file in $@ ; do
     head -1 "$file" | grep --quiet '^\$ANSIBLE_VAULT;' || {
-        echo "ERROR: $file is not encrypted"
-        has_error=1
+        if [ -s "$file" ]; then
+            echo "ERROR: $file is not encrypted"
+            has_error=1
+        else
+            echo "WARNING: $file is not encrypted but is empty"
+        fi
     }
 done