Where and how to place local modification of GIMP apparmor profile

Ubuntu 18.04 Desktop

GIMP snap installed (graphic images manipulation)

AppArmor in use as installed then configured by Canonical

All them in virtual machine hypervisored by VmWare

Host machine shares a folder with guest machine. Shared folder is mounted to /mnt/hm-sf/.

On system was found also:

/var/lib/snapd/apparmor/profiles/snap.gimp.gimp

The problem is GIMP snap can't open files from VB shared folder. To fix it local modification of GIMP apparmor profile was implemented then placed to /etc/apparmor.d/local/snap.gimp.gimp.

So /etc/apparmor.d/local/snap.gimp.gimp looks now like:

/mnt/hm-sf/**/ r,
/mnt/hm-sf/**[^/]  rw,

Subsequent profile reload however fails:

$ sudo apparmor_parser -R /etc/apparmor.d/local/snap.gimp.gimp 
AppArmor parser error for /etc/apparmor.d/local/snap.gimp.gimp in \
  /etc/apparmor.d/local/snap.gimp.gimp at line 1: syntax error, \
  unexpected TOK_MODE, expecting TOK_OPEN

How to fix it?

I realized snap architecture features own security layer - snap permissions. Quite possibly it interconnects to AppArmor. Interestingly it provides really convenient GUI interface in Snap Store app for each installed snap app. I used it to enable access to removal media for GIMP snap - and it helps. Possibly it is built that way snap permission was last closed gate on the path to VB shared folder, all were being open. No need to dig into apparmor rules. Hopefully will find soon little time to look into GIMP rules to identify matching one.