From 49a82e626e07dc9c00df82b40365ad6e04b90b94 Mon Sep 17 00:00:00 2001
From: Wayne Grant <wayne.grant@snyk.io>
Date: Thu, 19 Dec 2024 11:14:43 +0000
Subject: [PATCH] chore: add perm ignores for trans deps of provided
 artifactory-papi

---
 .circleci/config.yml | 2 +-
 .snyk                | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)
 create mode 100644 .snyk

diff --git a/.circleci/config.yml b/.circleci/config.yml
index f66f6f6..ebfa450 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -13,7 +13,7 @@ jobs:
       - prodsec/security_scans:
           mode: auto
           open-source-scan-all-projects: false
-          open-source-additional-arguments: --file=pom.xml --maven-aggregate-project
+          open-source-additional-arguments: --file=pom.xml --maven-aggregate-project --policy-file=.snyk
           iac-scan: disabled
 
 workflows:
diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..187517a
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,5 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+patch: {}
+# ignores vulnerabilities until expiry date; change duration by modifying expiry date
+ignore: {}