Skip to content

Ignore vulnerabilities from the report.

The ignore file allows users to go past known false positives by specifying vulnerabilities to exclude from analysis. This can make the results more precise by focusing only on new or high-priority issues.

Create the ignore file

To configure an ignore file, create a file called ignore.json and place it in the .safe folder along with the config.json that was created during the project setup.

fields:

  • file: the path to the module which contains the vulnerability
  • line: the line number of the vulnerability

Example of an ignore.json file.

ignore.json
[
  {
    "file": "src/webserver.erl",
    "line": 46
  },
  {
    "file": "src/router.erl",
    "line": 34
  },
  {
    "file": "src/supervisor.erl",
    "line": 61
  }    
]

This file will be referenced each time an analysis is run, filtering out the designated vulnerabilities

It’s recommended to review and update the ignore file periodically, to make sure that it reflects current false positives while not missing any potential issues.

Info

The ignore mechanism will be enhanced in future releases.