# Semgrep ignore file - suppress false positives and low-risk findings
# Uses gitignore-style patterns

# Console.log format string warnings - false positives
# JavaScript console.log/console.error don't use format strings like printf, so these are safe
admin-frontend/src/pages/PendingPhotos.tsx
admin-frontend/src/pages/Search.tsx
admin-frontend/src/pages/Tags.tsx
viewer-frontend/app/api/users/[id]/route.ts
viewer-frontend/lib/photo-utils.ts
viewer-frontend/lib/video-thumbnail.ts
viewer-frontend/scripts/run-email-verification-migration.ts

# SQL injection warnings - safe uses with controlled inputs (column names, not user data)
# These have nosemgrep comments but also listed here for ignore file
backend/api/auth_users.py
backend/api/pending_linkages.py

# SQL injection warnings in database setup/migration scripts (controlled inputs, admin-only)
scripts/db/
scripts/debug/

# Database setup code in app.py (controlled inputs, admin-only operations)
backend/app.py

# Docker compose security suggestions (acceptable for development)
deploy/docker-compose.yml

# Test files - dummy JWT tokens are expected in tests
tests/test_api_auth.py

