]> git.ipfire.org Git - thirdparty/util-linux.git/commitdiff
projects / thirdparty / util-linux.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 0fc338b)
ci: disable cpp/path-injection rule
authorThomas Weißschuh <thomas@t-8ch.de>
Wed, 12 Jul 2023 15:16:16 +0000 (17:16 +0200)
committerThomas Weißschuh <thomas@t-8ch.de>
Wed, 12 Jul 2023 19:55:48 +0000 (21:55 +0200)
This rule fires for file operations on user-specified paths.
As this behavior is the very core of many util-linux utilities it is a
false positive.

Signed-off-by: Thomas Weißschuh <thomas@t-8ch.de>
.github/workflows/codeql.yml patch | blob | blame | history

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 671e569daf2e7acfbc623fc59c18948c407771c8..b7d98a0de7182faa2841ca659d92ce6e8ccc93d3 100644 (file)
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -39,6 +39,10 @@ jobs:
         with:
           languages: ${{ matrix.language }}
           queries: +security-extended,security-and-quality
+          config: |
+            query-filters:
+            - exclude:
+                id: cpp/path-injection
 
       - name: Install dependencies
         run: sudo -E .github/workflows/cibuild-setup-ubuntu.sh
Unnamed repository; edit this file 'description' to name the repository.