chore(rest): Ignore semgrep warning about directly writing to http re…

…sponse in test util Semgrep rule go.lang.security.audit.xss.no-direct-write-to-responsewriter.no-direct-write-to-responsewriter warn about directly writing random content to a http repsonse without HTML escaped templating. As this case is a test util used to supply test with defined responses loaded from json test resources, the warning is marked ignored.
Dynatrace · Feb 14, 2023 · 3b10d37 · 3b10d37
1 parent 199931d
commit 3b10d37
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pkg/rest/test_utils.go b/pkg/rest/test_utils.go
@@ -90,7 +90,7 @@ func (i integrationTestResources) handler() func(res http.ResponseWriter, req *h
 			http.Error(res, "Not found", http.StatusNotFound)
 			return
 		} else {
-			_, err := res.Write(content)
+			_, err := res.Write(content) // nosemgrep: go.lang.security.audit.xss.no-direct-write-to-responsewriter.no-direct-write-to-responsewriter
 			if err != nil {
 				http.Error(res, err.Error(), http.StatusInternalServerError)
 			}