phaneron/Kelsidavis-WoWee
1
0
Fork 0
mirror of https://github.com/Kelsidavis/WoWee.git synced 2026-03-22 23:30:14 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Suppress cpp/weak-cryptographic-algorithm via query-filter (protocol-mandated RC4)

Browse source
This commit is contained in:
Kelsi 2026-02-19 17:49:49 -08:00
parent 20cdff0790
commit 208fe0e7e3
1 changed files with 9 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

15
.github/codeql/codeql-config.yml vendored
View file

@ -1,8 +1,11 @@
name: wowee-codeql-config name: wowee-codeql-config
# Warden stream crypto must remain RC4 for protocol compatibility. # The WoW client protocol (world-socket header cipher) and Warden anti-cheat
# Keep weak-crypto detection enabled project-wide, but exclude this one file # module protocol both mandate RC4. There is no way to replace RC4 with a
# so CodeQL doesn't raise an unfixable compatibility alert. # stronger algorithm without breaking compatibility with all supported servers.
paths-ignore: # All RC4 uses in this codebase are protocol-layer obligations, not choices.
- src/game/warden_crypto.cpp # Exclude the weak-crypto query rather than leaving unfixable high-severity
- src/game/warden_module.cpp # alerts that mislead triage.
query-filters:
- exclude:
id: cpp/weak-cryptographic-algorithm