phaneron/Kelsidavis-WoWee
1
0
Fork 0
mirror of https://github.com/Kelsidavis/WoWee.git synced 2026-05-25 07:43:53 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

chore(ci): exclude extern/ from CodeQL and Semgrep scanning

Browse source 
All 61 open CodeQL alerts were in vendored third-party libraries
(ImGui, miniaudio, stb_*). We do not modify upstream code, so these
findings drown out signal in our own code without being actionable.
This commit is contained in:
Kelsi 2026-05-14 11:33:26 -07:00
parent 6097390452
commit 3cd360e8d6
2 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

7
.github/codeql/codeql-config.yml vendored
View file

@ -1,5 +1,12 @@
name: wowee-codeql-config
# Skip vendored third-party libraries. We do not modify upstream code in
# extern/ (ImGui, miniaudio, stb_*, etc.) — those projects own their own
# triage and accepting CodeQL findings there blocks our update path and
# drowns out signal in our own code.
paths-ignore:
- extern
# The WoW client protocol (world-socket header cipher) and Warden anti-cheat
# module protocol both mandate RC4. There is no way to replace RC4 with a
# stronger algorithm without breaking compatibility with all supported servers.