Rename snyk policy file back to .snyk

Despite what the docs say, you cannot use a policy file with any other name than .snyk If you do, it is ignored with no warnings. Sheesh.
cyber-dojo · Feb 28, 2024 · ed56c2f · ed56c2f
1 parent 0afcfe6
commit ed56c2f
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 3 deletions.
diff --git a/.snyk b/.snyk
@@ -0,0 +1,3 @@
+# This file specifies snyk vulnerabilities to be ignored.
+# If this file contains only comments, then no vulnerabilities are ignored
+# but do not delete this file - it is needed for the live-snyk-scans repo workflows.
diff --git a/sh/kosli.sh b/sh/kosli.sh
@@ -65,7 +65,7 @@ kosli_attest_snyk()
     --artifact-type=docker \
     --host="${hostname}" \
     --api-token="${api_token}" \
-    --attachments="$(repo_root)/snyk.policy" \
+    --attachments="$(repo_root)/.snyk" \
     --name=languages-start-points.snyk-scan \
     --scan-results="$(repo_root)/snyk.json"
 }
@@ -119,7 +119,7 @@ on_ci_kosli_attest_snyk_scan_evidence()
       --file=Dockerfile \
       --sarif \
       --sarif-file-output=snyk.json \
-      --policy-path="$(repo_root)/snyk.policy"
+      --policy-path="$(repo_root)/.snyk"
     set -e
 
     kosli_attest_snyk "${KOSLI_HOST_STAGING}"    "${KOSLI_API_TOKEN_STAGING}"

diff --git a/snyk.policy b/snyk.policy