From b14fe0198f1ea275126e823ab574348cba2415bc Mon Sep 17 00:00:00 2001
From: Jeff Peiffer <jpeiffer@gmail.com>
Date: Thu, 16 May 2024 10:40:20 -0400
Subject: [PATCH] Switch to discrete steps

---
 CHANGELOG.md |  5 +++++
 action.yml   | 35 +++++++++++++++++++++++++++++++----
 pubspec.yaml |  2 +-
 3 files changed, 37 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 92775f2..df5aaa8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,8 @@
+## [2.0.2] - May 16th, 2024
+
+* Switching from reusable action to discrete steps.
+
+
 ## [2.0.1] - May 15th, 2024
 
 * Trying the `1.6.2-beta1` listed in the docs.
diff --git a/action.yml b/action.yml
index 47c759b..5de06af 100644
--- a/action.yml
+++ b/action.yml
@@ -52,9 +52,36 @@ runs:
         fi
       working-directory: ${{ inputs.path }}
 
-    - name: Security Scan
       # Docs: https://google.github.io/osv-scanner/github-action/
       # Releases: https://github.com/google/osv-scanner-action/tags
-      uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@v1.6.2-beta1"
-      # uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@v1.7.3"
-
+    - name: "Run scanner"
+      uses: google/osv-scanner-action/osv-scanner-action@75532bf0bf75464b047d80414dbce04449498365 # v1.7.3
+      with:
+        scan-args: |-
+          --output=results.json
+          --format=json
+          -r
+          --skip-git
+          ${{inputs.path}}
+      continue-on-error: true
+    - name: "Run osv-scanner-reporter"
+      uses: google/osv-scanner-action/osv-reporter-action@75532bf0bf75464b047d80414dbce04449498365 # v1.7.3
+      with:
+        scan-args: |-
+          --output=results.sarif
+          --new=results.json
+          --gh-annotations=false
+          --fail-on-vuln=true
+    - name: "Upload artifact"
+      id: "upload_artifact"
+      if: ${{ !cancelled() }}
+      uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+      with:
+        name: SARIF file
+        path: results.sarif
+        retention-days: 5
+    - name: "Upload to code-scanning"
+      if: "${{ !cancelled() }}"
+      uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+      with:
+        sarif_file: ${{ inputs.results-file-name }}
diff --git a/pubspec.yaml b/pubspec.yaml
index a093cb3..277b981 100644
--- a/pubspec.yaml
+++ b/pubspec.yaml
@@ -1,6 +1,6 @@
 name: 'actions_flutter_validate'
 description: 'Simple CLI to be able to validate Dart and Flutter repos'
-version: '2.0.1'
+version: '2.0.2'
 homepage: 'https://github.com/peiffer-innovations/actions-flutter-validate'
 
 environment: