cyber-dojo · JonJagger · Nov 24, 2025 · Nov 24, 2025 · Nov 24, 2025 · Nov 24, 2025
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -73,6 +73,12 @@ jobs:
           kosli begin trail "${KOSLI_TRAIL}"  
             --template-file=.kosli.yml
 
+      - name: Write Trail URL to GitHub Step Summary
+        if: ${{ github.ref == 'refs/heads/main' }}
+        run: |
+          url="https://app.kosli.com/${KOSLI_ORG}/flows/${KOSLI_FLOW}/trails/${KOSLI_TRAIL}"
+          echo "[Kosli Trail](${url})" > "${GITHUB_STEP_SUMMARY}"
+
 
   pull-request:
     if: ${{ github.ref == 'refs/heads/main' }}
@@ -349,7 +355,15 @@ jobs:
   sdlc-control-gate:
     if: ${{ github.ref == 'refs/heads/main' }}
     runs-on: ubuntu-latest
-    needs: [build-image, pull-request, rubocop-lint, unit-tests, integration-tests, snyk-container-scan, snyk-code-scan, sonarcloud-scan]
+    needs:
+      - build-image
+      - pull-request
+      - rubocop-lint
+      - unit-tests
+      - integration-tests
+      - snyk-container-scan
+      - snyk-code-scan
+      - sonarcloud-scan
     env:
       KOSLI_FINGERPRINT: ${{ needs.build-image.outputs.digest }}
     steps:

diff --git a/.snyk b/.snyk
@@ -1,3 +1,16 @@
 # This file specifies snyk vulnerabilities to be ignored.
 # If this file contains only comments, then no vulnerabilities are ignored
 # but do not delete this file - it is needed for the live-snyk-scans repo workflows.
+
+ignore:
+  SNYK-ALPINE320-BUSYBOX-14102403:
+    - '*':
+      reason: Waiting for fix
+      expires: 2025-12-24T10:53:10.182Z
+      created: 2025-11-24T10:53:10.201Z
+
+  SNYK-ALPINE320-BUSYBOX-14102404:
+    - '*':
+      reason: Waiting for fix
+      expires: 2025-12-24T10:53:10.182Z
+      created: 2025-11-24T10:53:10.201Z