summaryrefslogtreecommitdiffstats
path: root/.codeql-config.yml
diff options
context:
space:
mode:
Diffstat (limited to '.codeql-config.yml')
-rw-r--r--.codeql-config.yml31
1 files changed, 31 insertions, 0 deletions
diff --git a/.codeql-config.yml b/.codeql-config.yml
new file mode 100644
index 0000000..1311657
--- /dev/null
+++ b/.codeql-config.yml
@@ -0,0 +1,31 @@
+name: "Cryptsetup CodeQL config"
+
+query-filters:
+- exclude:
+ id: cpp/fixme-comment
+- exclude:
+ id: cpp/empty-block
+- exclude:
+ id: cpp/poorly-documented-function
+- exclude:
+ id: cpp/loop-variable-changed
+- exclude:
+ id: cpp/empty-if
+- exclude:
+ id: cpp/long-switch
+- exclude:
+ id: cpp/complex-condition
+- exclude:
+ id: cpp/commented-out-code
+
+# These produce many false positives
+- exclude:
+ id: cpp/uninitialized-local
+- exclude:
+ id: cpp/path-injection
+- exclude:
+ id: cpp/missing-check-scanf
+
+# CodeQL should understand coverity [toctou] comments
+- exclude:
+ id: cpp/toctou-race-condition
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-07 06:33:14 +0000