fix: solve semgrep inline suppress

Bulletdev · Bulletdev · commit be7ca783b227 · 2026-03-15T21:08:17.000-03:00
diff --git a/app/modules/scouting/controllers/players_controller.rb b/app/modules/scouting/controllers/players_controller.rb
@@ -286,10 +286,8 @@ def set_scouting_target
       end
 
       def scouting_target_params
-        # nosemgrep: ruby.lang.security.model-attr-accessible.model-attr-accessible
-        # :role here is the player's in-game position (top/jungle/mid/adc/support),
-        # not an authorization role. ScoutingTarget has no privilege implications.
-        params.require(:scouting_target).permit(
+        # :role is the LoL in-game position (top/jungle/mid/adc/support), not an authorization role.
+        params.require(:scouting_target).permit( # nosemgrep: ruby.lang.security.model-attr-accessible.model-attr-accessible
           :summoner_name, :real_name, :role, :region, :nationality,
           :age, :status, :current_team,
           :current_tier, :current_rank, :current_lp,
@@ -309,10 +307,8 @@ def watchlist_params
       end
 
       def target_params
-        # nosemgrep: ruby.lang.security.model-attr-accessible.model-attr-accessible
-        # :role here is the player's in-game position (top/jungle/mid/adc/support),
-        # not an authorization role. ScoutingTarget has no privilege implications.
-        params.fetch(:target, {}).permit(
+        # :role is the LoL in-game position (top/jungle/mid/adc/support), not an authorization role.
+        params.fetch(:target, {}).permit( # nosemgrep: ruby.lang.security.model-attr-accessible.model-attr-accessible
           :summoner_name, :real_name, :role, :region, :nationality,
           :age, :status, :current_team,
           :current_tier, :current_rank, :current_lp,
