Version: 1.3.1

Ignore false positives from the report

SAFE has an advanced false positive filtering mechanism that tries to identify and ignore known false positives in the codebase, reducing noise in the reports. Even with this mechanism, there might be cases where certain findings are still considered false positives. In such cases, you can use our ignore mechanism to explicitly ignore certain findings.

Ignoring a finding

To ignore a finding, you need to put a specific comment in the source code, right above the line where the vulnerability is detected.

Example in Erlang

my_function() ->
    ...
    % safe-ignore list_to_atom/1
    list_to_atom(CheckedVariable),
    ...

Example in Elixir

def my_function do
    ...
    # safe-ignore String.to_atom/1
    String.to_atom(checked_variable)
    ...
end

Note: in Erlang you can omit the erlang: prefix, and in Elixir you can omit the Kernel prefix from the module

Ignoring a finding​

Example in Erlang​

Example in Elixir​

Contents

Ignoring a finding

Example in Erlang

Example in Elixir