Rename kosli snyk template name ready for adding code scanning (#149)

.github/workflows/main.yml

@@ -180,18 +180,22 @@ jobs:
       - name: Run Snyk to check Docker image for vulnerabilities
         continue-on-error: true
         run:
+          KOSLI_ATTACHMENTS=/tmp/kosli
+          rm -rf "${KOSLI_ATTACHMENTS}" || true
+          mkdir -p "${KOSLI_ATTACHMENTS}
+          cp .snyk "${KOSLI_ATTACHMENTS}
+
           snyk container test "${IMAGE_NAME}" 
             --file=Dockerfile
             --sarif
-            --sarif-file-output=snyk.json 
-            --policy-path=.snyk
+            --sarif-file-output=snyk.container.scan.json 
+            --policy-path=.snyk | tee "${KOSLI_ATTACHMENTS}/snyk.container.scan.log
 
       - name: Attest Snyk results to Kosli Trail
         run:
           kosli attest snyk "${IMAGE_NAME}" 
-            --attachments=.snyk          
-            --name=dashboard.snyk-scan 
-            --scan-results=snyk.json
+            --name=dashboard.snyk-container-scan 
+            --scan-results=snyk.container.scan.json
 
 
   sdlc-control-gate:

.github/workflows/main_staging.yml

@@ -170,18 +170,22 @@ jobs:
       - name: Run Snyk to check Docker image for vulnerabilities
         continue-on-error: true
         run:
+          KOSLI_ATTACHMENTS=/tmp/kosli
+          rm -rf "${KOSLI_ATTACHMENTS}" || true
+          mkdir -p "${KOSLI_ATTACHMENTS}
+          cp .snyk "${KOSLI_ATTACHMENTS}
+
           snyk container test "${IMAGE_NAME}" 
             --file=Dockerfile
             --sarif
-            --sarif-file-output=snyk.json 
-            --policy-path=.snyk
+            --sarif-file-output=snyk.container.scan.json 
+            --policy-path=.snyk | tee "${KOSLI_ATTACHMENTS}/snyk.container.scan.log
 
       - name: Attest Snyk results to Kosli Trail
         run:
           kosli attest snyk "${IMAGE_NAME}" 
-            --attachments=.snyk          
-            --name=dashboard.snyk-scan 
-            --scan-results=snyk.json
+            --name=dashboard.snyk-container-scan 
+            --scan-results=snyk.container.scan.json
 
 
   sdlc-control-gate:

.kosli.yml

@@ -8,5 +8,5 @@ trail:
           type: generic
         - name: pull-request
           type: pull_request
-        - name: snyk-scan
+        - name: snyk-container-scan
           type: snyk