KEMBAR78
Add Codeql Suppressions by anamnavi · Pull Request #25943 · PowerShell/PowerShell · GitHub
Skip to content

Add Codeql Suppressions #25943

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Sep 3, 2025
Merged

Add Codeql Suppressions #25943

merged 4 commits into from
Sep 3, 2025

Conversation

@anamnavi
Copy link
Member

@anamnavi anamnavi commented Aug 29, 2025
edited
Loading

This pull request includes several comments added to the code to address CodeQL warnings in the PowerShell codebase. The comments explain why the flagged issues are expected behavior and not security concerns. The comments specifically address CodeQL warnings for command-line injection and server-side request forgery (SSRF)

CodeQL suppression comments were added in Process.cs, NativeCommandProcessor.cs, RunspaceConnectionInfo.cs, and FileSystemProvider.cs, WebRequestPSCmdlet.Common.cs

PR Summary

PR Context

PR Checklist

TravisEz13
TravisEz13 reviewed Aug 29, 2025
View reviewed changes
TravisEz13
TravisEz13 reviewed Aug 29, 2025
View reviewed changes
@anamnavi anamnavi requested a review from TravisEz13 August 29, 2025 22:18
@TravisEz13 TravisEz13 changed the title Codeql suppresions2 Codeql suppresions Sep 3, 2025
@TravisEz13 TravisEz13 self-assigned this Sep 3, 2025
@anamnavi anamnavi changed the title Codeql suppresions Add Codeql Suppressions Sep 3, 2025
@TravisEz13 TravisEz13 added CL-Tools Indicates that a PR should be marked as a tools change in the Change Log BackPort-7.4.x-Consider BackPort-7.5.x-Consider labels Sep 3, 2025
@TravisEz13
Copy link
Member

/azp run PowerShell-CI-linux-packaging, PowerShell-Windows-Packaging-CI

@azure-pipelines
Copy link

Azure Pipelines could not run because the pipeline triggers exclude this branch/path.

@TravisEz13 TravisEz13 merged commit 1e46d89 into PowerShell:master Sep 3, 2025
36 of 42 checks passed
@microsoft-github-policy-service
Copy link
Contributor

microsoft-github-policy-service bot commented Sep 3, 2025
edited by unfurl-links bot
Loading

📣 Hey @@anamnavi, how did we do? We would love to hear your feedback with the link below! 🗣️

🔗 https://aka.ms/PSRepoFeedback

pwshBot pushed a commit to pwshBot/PowerShell that referenced this pull request Sep 3, 2025
@anamnavi @pwshBot
Cherry-pick PR PowerShell#25943 with conflicts for manual resolution
d2140cf
@pwshBot pwshBot mentioned this pull request Sep 3, 2025
Merged
9 tasks
pwshBot pushed a commit to pwshBot/PowerShell that referenced this pull request Sep 3, 2025
@anamnavi @pwshBot
Cherry-pick PR PowerShell#25943 with conflicts for manual resolution
e33fae6
@pwshBot pwshBot mentioned this pull request Sep 3, 2025
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@TravisEz13 TravisEz13 TravisEz13 approved these changes

@daxian-dbw daxian-dbw Awaiting requested review from daxian-dbw daxian-dbw is a code owner

@adityapatwardhan adityapatwardhan Awaiting requested review from adityapatwardhan

Assignees

@TravisEz13 TravisEz13

Labels

Backport-7.4.x-Migrated Backport-7.5.x-Migrated CL-Tools Indicates that a PR should be marked as a tools change in the Change Log

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@anamnavi @TravisEz13