mirror of
https://github.com/Kelsidavis/WoWee.git
synced 2026-03-23 07:40:14 +00:00
Suppress cpp/weak-cryptographic-algorithm via query-filter (protocol-mandated RC4)
This commit is contained in:
Kelsi
parent
20cdff0790
commit
208fe0e7e3
1 changed files with 9 additions and 6 deletions
15
.github/codeql/codeql-config.yml
vendored
15
.github/codeql/codeql-config.yml
vendored
|
|
@ -1,8 +1,11 @@
|
|||
name: wowee-codeql-config
|
||||
|
||||
# Warden stream crypto must remain RC4 for protocol compatibility.
|
||||
# Keep weak-crypto detection enabled project-wide, but exclude this one file
|
||||
# so CodeQL doesn't raise an unfixable compatibility alert.
|
||||
paths-ignore:
|
||||
- src/game/warden_crypto.cpp
|
||||
- src/game/warden_module.cpp
|
||||
# The WoW client protocol (world-socket header cipher) and Warden anti-cheat
|
||||
# module protocol both mandate RC4. There is no way to replace RC4 with a
|
||||
# stronger algorithm without breaking compatibility with all supported servers.
|
||||
# All RC4 uses in this codebase are protocol-layer obligations, not choices.
|
||||
# Exclude the weak-crypto query rather than leaving unfixable high-severity
|
||||
# alerts that mislead triage.
|
||||
query-filters:
|
||||
- exclude:
|
||||
id: cpp/weak-cryptographic-algorithm
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue