Skip to content

Commit 1a1349b

Browse files
AnatoliBCopilot
andauthored
Suppress false-positive CodeQL warning in RemoteOrchestrationServiceClient (#1347)
* Add CodeQL suppressions for serialization security warnings in PutJsonAsync method Co-authored-by: Copilot <copilot@github.com> * Fix suppression syntax Co-authored-by: Copilot <copilot@github.com> * Move suppression comment to the correct line Co-authored-by: Copilot <copilot@github.com> --------- Co-authored-by: Copilot <copilot@github.com>
1 parent 8b8f1e8 commit 1a1349b

1 file changed

Lines changed: 1 addition & 0 deletions

File tree

src/DurableTask.AzureServiceFabric/Remote/RemoteOrchestrationServiceClient.cs

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -305,6 +305,7 @@ private async Task PutJsonAsync(string instanceId, string fragment, object @obje
305305
{
306306
var mediaFormatter = new JsonMediaTypeFormatter()
307307
{
308+
// CodeQL [SM02211] False positive: serialization (write) path only; no untrusted JSON is deserialized here.
308309
SerializerSettings = new JsonSerializerSettings { TypeNameHandling = TypeNameHandling.All }
309310
};
310311

0 commit comments

Comments
 (0)