Allow inline ignore directives to disable rule(s) for a snippet of code

[klutchell]

Similar to other linters, we would like the option exclude a line of code from having a rule applied if we have deemed them to be not problematic in context.

e.g.

• https://github.com/koalaman/shellcheck/wiki/Directive
• https://eslint.org/docs/latest/use/configure/rules#using-configuration-comments-1

So something like...

run: |
   # octoscan ignore=unsecure-commands
   echo "echo "::set-env name=ENV_NAME::value"

or

# octoscan ignore=unsecure-commands
run: |
   echo "##[set-env name=ENV_NAME;]value"
   # or
   echo "echo "::set-env name=ENV_NAME::value"

[hugo-syn]

Hi @klutchell, this would be a great feature, however it seems a bit complicated to implement. The tool is based on https://github.com/rhysd/actionlint for all the YAML parsing and core logic, and to my knowledge this tool does not support this feature. I can try to look at this, but it does not seem easy

[klutchell]

That's fair, and what I expected the answer might be. We use actionlint as well so we could benefit in multiple ways if they implemented this feature request.

[hugo-syn]

If he implements it I'll do the same here, but I don't want to spend time doing a PR, I already have one opened since 2023 and there are also other really interesting ones that are still waiting for merging or comments from the author.