Suppress warnings from Github #9298
Comments
|
By the way, the false positive warning is pointing this line complaining about unsanitized |
|
Alert suppression using @smowton Could you have a look at this? At a glance the sanitization code looks fine. Should the query be updated to recognize the sanitization code ? |
|
It'll be difficult to accurately classify https://github.com/argoproj/argo-cd/blob/77f9515547096ea939dd8b0b3aeae77708f11795/util/io/files/util.go#L80 as a barrier guard. Manually dismissing the warning is probably right in this case. @aibaars can you advise how to do that? |
Manually dismissing can be done in the UI. |
|
Tks all for confirming this. |
adityasharad
added
Go
question
|
Closing as answered: no there isn't an inline comment mechanism for suppression in current code scanning, but manual dismissal via the UI can be done. |
See github/codeql#9298 for more details. CodeQL does not support disabling linter warnings by comments.
|
You may want to use https://github.com/advanced-security/dismiss-alerts to automate the task of dismissing alerts that have suppression markers in the code. |
Hi!
I am trying to suppress a warning from what I understand a false positive zip-slip validation. We are using the GitHub Code Scanning job for running CodeQL. Even when I add the
// lgtm[go/zipslip]tag in the code I still get the warning.Example case:
https://github.com/argoproj/argo-cd/pull/8789/checks?check_run_id=5574205353
Is
// lgtmtags supported by Github Code Scanning jobs? If not, how could I suppress warnings in this case?Thank you!
The text was updated successfully, but these errors were encountered: