forked from cicirello/Chips-n-Salsa
-
Notifications
You must be signed in to change notification settings - Fork 0
/
.lift.toml
36 lines (30 loc) · 1.39 KB
/
.lift.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
jdkVersion = "11"
# don't run eslint... it is for js and will detect false positives
# in javadoc directories.
disableTools = ["eslint"]
# Ignore warnings not relevant to this specific project:
#
# 1) FindSecBugs identifies our use of ThreadLocalRandom as predictable.
# We make extensive use of this class since local search require randomness.
# Our use of randomness in this library is NOT at all security related,
# and rather, we simply need a fast pseudorandom number generator since
# we need to generate large numbers of random numbers. So ignore
# predictable random warnings.
#
# 2) FindSecBugs generates a few PATH_TRAVERSAL_IN messages ("reads a file whose
# location might be specified by user input"). The Chips-n-Salsa library includes
# a few parsers for benchmark instances of a few optimization problems. Those
# parsers are passed the file to parse, and also include methods for outputting
# randomly generated instances to a file (which also accepts filename as input).
# It is the responsibility of the application that uses the library to appropriately
# obtain the relevant filenames.
#
# 3) FindSecBugs generates PATH_TRAVERSAL_OUT for the same reason as above,
# and we are ignoring them for the same reason.
ignoreRules = ["PREDICTABLE_RANDOM", "PATH_TRAVERSAL_IN", "PATH_TRAVERSAL_OUT"]
# Ignore results from these directories
ignoreFiles = """
docs/api/jquery/
src/test/
*.js
"""