Update CI with brakeman ignore

Author: kengallego

.brakeman.ignore

@@ -2,8 +2,8 @@
   "ignored_warnings": [
     {
       "warning_type": "Cross-Site Request Forgery",
-      "warning_code": 17,
-      "fingerprint": "6f5239fb87c64764d0c209014deb5cf504c2c10ee424bd33590f0a4f22e01d8f",
+      "warning_code": 7,
+      "fingerprint": "8467757e84ea0d7ea13884e1bebb9cd69913885cc43c455f2d71bd8b8c92c5c7",
       "check_name": "ForgerySetting",
       "message": "`protect_from_forgery` should be called in `ApplicationController`",
       "file": "site/app/controllers/application_controller.rb",
@@ -13,7 +13,8 @@
       "render_path": null,
       "location": {
         "type": "controller",
-        "controller": "ApplicationController"      },
+        "controller": "ApplicationController"
+      },
       "user_input": null,
       "confidence": "High",
       "note": "The `site/` path is meant for development and testing ONLY. It is never deployed to production and has no real users or sessions."

.github/workflows/ci.yml

@@ -20,7 +20,7 @@ jobs:
           bundler-cache: true
 
       - name: Scan for common Rails security vulnerabilities using static analysis
-        run: bin/brakeman --no-pager
+        run: bin/brakeman --no-pager -i .brakeman.ignore
 
   scan_js:
     runs-on: ubuntu-latest