CodeQL reports some true and some false positive for a specific rule.
Is there a way to mark a Python codeline so that the check is ignored by CodeQL?
Similar, for example to # noqa for Python flake or pep-8 checks.
Asked
Active
Viewed 528 times
2
-
Looks like this is [not supported at the moment](https://github.com/github/codeql/issues/11427) – Marcono1234 Dec 10 '22 at 23:47
-
@Marcono1234, that could be a valid answer (at least until the feature is added in CodeQL) – wovano Dec 11 '22 at 09:45
1 Answers
1
Check out one alternative using the open source project advanced-security/dismiss-alerts. It introduces an additional CodeQL query to extract out //codeql[py/line-too-long] or # noqa style comments in your code (see test.py). Those comments are then fed into the SARIF suppression[] object and dismissed in Code Scanning by calling the GitHub alerts api.
felickz
- 4,292
- 3
- 33
- 37