From 4a672c8c35860bedc3f21741b17300e86de81524 Mon Sep 17 00:00:00 2001
From: Michael Adam <obnox@samba.org>
Date: Tue, 26 Sep 2023 12:42:14 +0200
Subject: [PATCH] ci: fix the  snyk policy to  correctly  ignore the  MPL 
 license issue

after  https://github.com/rook/rook/pull/12932 has been merged, we
continue to see MPL issues reported by the snyk CI runs:

https://github.com/rook/rook/actions/runs/6302663608/job/17110310884

This updates to the `.snyk` policy file to correctly ignore the MPL license issue
by using the  the proper snyk ID for this issue

According to the doc
https://docs.snyk.io/manage-risk/policies/the-.snyk-file,

the correct ID is `snyk:lic:npm:symbol:MPL-2.0`

The update to the file has been performed with the `snyk ignore`
command to ensure validity of the policy file.

Fixes: #12930

Signed-off-by: Michael Adam <obnox@samba.org>
---
 .snyk | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/.snyk b/.snyk
index 0474387a92d8..111c0fda9e35 100644
--- a/.snyk
+++ b/.snyk
@@ -1,3 +1,7 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
 ignore:
-  MPL-2.0:
-    - reason: "Mozilla Public License 2.0 is compatible with Rook's Apache 2.0 license"
+  'snyk:lic:npm:symbol:MPL-2.0':
+    - '*':
+        reason: Mozilla Public License 2.0 is compatible with Rook's Apache 2.0 license
+version: v1.25.0
+patch: {}