ci: exclude weak-sensitive-data-hashing rule from CodeQL
API token hashing uses HMAC-SHA256 on high-entropy tokens (256-bit random), not passwords. Actual password hashing uses bcrypt.
This commit is contained in:
Stefano Bertelli
parent
604446f8ca
commit
31b31b7946
2 changed files with 10 additions and 0 deletions
1
.github/workflows/codeql.yml
vendored
1
.github/workflows/codeql.yml
vendored
|
|
@ -26,6 +26,7 @@ jobs:
|
|||
uses: github/codeql-action/init@v3
|
||||
with:
|
||||
languages: python
|
||||
config-file: .github/codeql/codeql-config.yml
|
||||
|
||||
- name: Perform CodeQL Analysis
|
||||
uses: github/codeql-action/analyze@v3
|
||||
Loading…
Add table
Add a link
Reference in a new issue