Update snyk and trivy policies based on our maintanance policy

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>

Closes #37480

.github/workflows/snyk-analysis.yml

@@ -24,7 +24,7 @@ jobs:
       - uses: snyk/actions/setup@master
 
       - name: Check for vulnerabilities in Quarkus
-        run: snyk test --policy-path=${GITHUB_WORKSPACE}/.github/snyk/.snyk --all-projects --prune-repeated-subdependencies --exclude=tests --sarif-file-output=quarkus-report.sarif quarkus/deployment
+        run: snyk test --severity-threshold=high --policy-path=${GITHUB_WORKSPACE}/.github/snyk/.snyk --all-projects --prune-repeated-subdependencies --exclude=tests --sarif-file-output=quarkus-report.sarif quarkus/deployment
         continue-on-error: true
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
@@ -39,7 +39,7 @@ jobs:
       - name: Check for vulnerabilities in Operator
         run: |
           ./mvnw -Poperator -pl operator -am -DskipTests clean install
-          snyk test --policy-path=${GITHUB_WORKSPACE}/.github/snyk/.snyk --all-projects --prune-repeated-subdependencies --exclude=tests --sarif-file-output=operator-report.sarif operator
+          snyk test --severity-threshold=high --policy-path=${GITHUB_WORKSPACE}/.github/snyk/.snyk --all-projects --prune-repeated-subdependencies --exclude=tests --sarif-file-output=operator-report.sarif operator
         continue-on-error: true
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

.github/workflows/trivy-analysis.yml

@@ -31,7 +31,7 @@ jobs:
           image-ref: quay.io/keycloak/${{ matrix.container }}:${{ steps.release.outputs.id }}
           format: sarif
           output: trivy-results.sarif
-          severity: MEDIUM,CRITICAL,HIGH
+          severity: CRITICAL,HIGH
           ignore-unfixed: true
           security-checks: vuln
           timeout: 15m