Switch to discrete steps

peiffer-innovations · May 16, 2024 · b14fe01 · b14fe01
1 parent d53a64b
commit b14fe01
Show file tree

Hide file tree

Showing 3 changed files with 37 additions and 5 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,8 @@
+## [2.0.2] - May 16th, 2024
+
+* Switching from reusable action to discrete steps.
+
+
 ## [2.0.1] - May 15th, 2024
 
 * Trying the `1.6.2-beta1` listed in the docs.

diff --git a/action.yml b/action.yml
@@ -52,9 +52,36 @@ runs:
         fi
       working-directory: ${{ inputs.path }}
 
-    - name: Security Scan
       # Docs: https://google.github.io/osv-scanner/github-action/
       # Releases: https://github.com/google/osv-scanner-action/tags
-      uses: "google/osv-scanner-action/.github/workflows/[email protected]"
-      # uses: "google/osv-scanner-action/.github/workflows/[email protected]"
-
+    - name: "Run scanner"
+      uses: google/osv-scanner-action/osv-scanner-action@75532bf0bf75464b047d80414dbce04449498365 # v1.7.3
+      with:
+        scan-args: |-
+          --output=results.json
+          --format=json
+          -r
+          --skip-git
+          ${{inputs.path}}
+      continue-on-error: true
+    - name: "Run osv-scanner-reporter"
+      uses: google/osv-scanner-action/osv-reporter-action@75532bf0bf75464b047d80414dbce04449498365 # v1.7.3
+      with:
+        scan-args: |-
+          --output=results.sarif
+          --new=results.json
+          --gh-annotations=false
+          --fail-on-vuln=true
+    - name: "Upload artifact"
+      id: "upload_artifact"
+      if: ${{ !cancelled() }}
+      uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+      with:
+        name: SARIF file
+        path: results.sarif
+        retention-days: 5
+    - name: "Upload to code-scanning"
+      if: "${{ !cancelled() }}"
+      uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+      with:
+        sarif_file: ${{ inputs.results-file-name }}
diff --git a/pubspec.yaml b/pubspec.yaml
@@ -1,6 +1,6 @@
 name: 'actions_flutter_validate'
 description: 'Simple CLI to be able to validate Dart and Flutter repos'
-version: '2.0.1'
+version: '2.0.2'
 homepage: 'https://github.com/peiffer-innovations/actions-flutter-validate'
 
 environment: