close
Skip to content

Add lgtm explanation#4362

Merged
nlohmann merged 1 commit into
developfrom
lgtm-goto-explanation
Nov 10, 2024
Merged

Add lgtm explanation#4362
nlohmann merged 1 commit into
developfrom
lgtm-goto-explanation

Conversation

@nlohmann
Copy link
Copy Markdown
Owner

@nlohmann nlohmann commented Apr 29, 2024

Closes #4361 by adding a comment why goto should not be considered harmful in the number parser.

@nlohmann nlohmann added this to the Release 3.11.4 milestone Apr 29, 2024
@nlohmann nlohmann self-assigned this Apr 29, 2024
@github-actions github-actions Bot added the S label Apr 29, 2024
@coveralls
Copy link
Copy Markdown

coveralls commented Apr 29, 2024

Coverage Status

coverage: 100.0%. remained the same
when pulling 2785437 on lgtm-goto-explanation
into 8c391e0 on develop.

@TheJCAB
Copy link
Copy Markdown
Contributor

TheJCAB commented May 1, 2024

Thanx!

Note that I don't know if a justification in the old style suppression format will be accepted. The internal guide to resolve the issue just mentions the "// CodeQL [query-id] Justification" format, which IIUC needs to be in a comment on its own line (not appended to the code). From my searches in the codeql public documentation, the only mention of suppressions (old or new) is in the release notes of CodeQL 2.12.0 announcing support for the new format, and from looking at documentation for the CodeQL scanning offered here on GitHub, they seem to be using 2.17.0, so that should work fine. I'd encourage you to try it.

@TheJCAB
Copy link
Copy Markdown
Contributor

TheJCAB commented May 15, 2024

I opened support requests on both CodeQL here on github and on the internal team managing CodeQL policies, but I've heard nothing from either.

I say go ahead and complete this as-is. It's an improvement and I expect it will suffice. If changing the suppression style becomes needed, it'll be a problem for another day.

Thank you!

@nlohmann nlohmann merged commit 4a602df into develop Nov 10, 2024
@nlohmann nlohmann deleted the lgtm-goto-explanation branch November 10, 2024 12:15
slowriot pushed a commit to slowriot/json that referenced this pull request Jan 10, 2025
@nlohmann @slowriot
Add lgtm explanation (nlohmann#4362)
7b692ee
@RickWinter RickWinter mentioned this pull request Jan 29, 2025
Merged
RickWinter added a commit to Azure/azure-sdk-for-cpp that referenced this pull request Jan 29, 2025
@RickWinter
Fix CodeQL issue (#6382)
9a32e64 
Add explanation to CodeQL suppression.

Change was pulled directly from nlohmann/json
nlohmann/json#4362
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@nlohmann nlohmann

Labels

S

Projects

None yet

Milestone

Release 3.12.0

Development

Successfully merging this pull request may close these issues.

CodeQL suppressions lack justification

3 participants

@nlohmann @coveralls @TheJCAB