Adapt pipeline_definitions to include SAST linting logs in OCM descri…

…ptor

.ci/pipeline_definitions

@@ -1,5 +1,12 @@
 etcd-wrapper:
   base_definition:
+    repo:
+      source_labels:
+        - name: cloud.gardener.cnudie/dso/scanning-hints/source_analysis/v1
+          value:
+            policy: skip
+            comment: |
+              we use gosec for sast scanning. See attached log.
     traits:
       version:
         preprocess:
@@ -61,6 +68,16 @@ etcd-wrapper:
               image: europe-docker.pkg.dev/gardener-project/releases/gardener/etcd-wrapper
         release:
           nextversion: 'bump_minor'
+          assets:
+            - type: build-step-log
+              step_name: check
+              purposes:
+                - lint
+                - sast
+                - gosec
+              comment: |
+                we use gosec (linter) for SAST scans
+                see: https://github.com/securego/gosec
         slack:
           default_channel: 'internal_scp_workspace'
           channel_cfgs: