From 0f26accbc37af0670aab3784e40614d8c6f22504 Mon Sep 17 00:00:00 2001
From: Ray Luo <rayluo@microsoft.com>
Date: Fri, 10 Jan 2025 12:34:56 -0800
Subject: [PATCH] Suppress a false positive CodeQL alarm

---
 tests/test_e2e.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/tests/test_e2e.py b/tests/test_e2e.py
index a079654..41239e0 100644
--- a/tests/test_e2e.py
+++ b/tests/test_e2e.py
@@ -1333,6 +1333,9 @@ def test_at_pop_calling_pattern(self):
                 nonce=self._extract_pop_nonce(resp.headers.get("WWW-Authenticate")),
                 ),
             ))
+        # The api_endpoint being used is a test setup without proper SSL cert,
+        # so we suppress the CodeQL warning for disabling SSL certificate checks
+        # @suppress py/bandit/requests-ssl-verify-disabled
         resp = requests.get(api_endpoint, verify=False, headers={
             "Authorization": "pop {}".format(result["access_token"]),
             })