exclude examples, apimachinery samples, from sast/snyk scan

None of our examples are items that run in any of the images produced for shared resources csi driver. They are simply artifact users can employ when trying out the system, learning what it can do. Also, the 'vendor/k8s.io/apimachinery/pkg/util/managedfields/pod.yaml' cited by the scan is a sample from that component as well. you'll see it creates the pod "some-name" in the default namespace
apoorvajagtap · Jan 25, 2024 · dfdc638 · dfdc638
1 parent 83c961e
commit dfdc638
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/.snyk b/.snyk
@@ -3,4 +3,8 @@
 # https://docs.snyk.io/snyk-cli/commands/ignore
 exclude:
   global:
-    - vendor/**
+    # all yamls, including the pod ones, in our examples directory are simply samples for users trying shared resources out; these artifacts are not created by any of the images
+    - examples/**
+    # this pod.yaml in apimachinery is just another sample that is never created by our images; you'll see it creates the pod "some-name" in the default namespace
+    - vendor/k8s.io/apimachinery/pkg/util/managedfields/pod.yaml
+    - unpacked_remote_sources/cachito-gomod-with-deps/app/vendor/k8s.io/apimachinery/pkg/util/managedfields/pod.yaml