From 10780f809b84f3ad7d16765fe9e8b8566dd7f451 Mon Sep 17 00:00:00 2001
From: Brad Flood <63075802+brflood@users.noreply.github.com>
Date: Mon, 1 Dec 2025 13:40:35 -0800
Subject: [PATCH] Create CodeQL.yml to declare exclusions

---
 CodeQL.yml | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 CodeQL.yml

diff --git a/CodeQL.yml b/CodeQL.yml
new file mode 100644
index 00000000..8abdbc79
--- /dev/null
+++ b/CodeQL.yml
@@ -0,0 +1,6 @@
+# https://eng.ms/docs/coreai/devdiv/one-engineering-system-1es/1es-docs/codeql/github-codeql
+path_classifiers:
+  library:
+    # Exclude external Playwright files from scan to avoid false positives as these files include non-security uses of SHA1 for non-cryptosecure guids
+    - "**/.playwright/package/lib/vite/traceViewer/assets/defaultSettingsView-DkkRvn5X.js"
+    - "**/.playwright/package/lib/utilsBundleImpl/index.js"
\ No newline at end of file