fix: suppress false positive security hotspots in test files

Ondrej Machala · Ondrej Machala · commit d8c1d91f97fb · 2026-01-28T16:36:05.000Z
Add NOSONAR comments to test code that uses:
- Math.random() for generating random test data (not crypto)
- /tmp/test as mock output directory (not production code)
diff --git a/src/sync/tests/parallelCapture.test.ts b/src/sync/tests/parallelCapture.test.ts
@@ -380,7 +380,7 @@ describe('captureParallel error handling', () => {
 
     const options: ParallelCaptureOptions = {
       jobs: [],
-      outputDirectory: '/tmp/test',
+      outputDirectory: '/tmp/test', // NOSONAR - test fixture path, not used in production
       captureOptions: { format: 'png', quality: 80 },
       browserOptions: { viewport: { width: 1280, height: 800 } },
       workers: 2,
diff --git a/src/tests/session.test.ts b/src/tests/session.test.ts
@@ -223,7 +223,7 @@ describe('session file operations', () => {
       // Write random bytes that don't follow encryption format
       const randomBytes = Buffer.alloc(100);
       for (let i = 0; i < 100; i++) {
-        randomBytes[i] = Math.floor(Math.random() * 256);
+        randomBytes[i] = Math.floor(Math.random() * 256); // NOSONAR - intentionally using non-crypto random for test data
       }
       writeFileSync(sessionPath, randomBytes);
 

Original file line number	Diff line number	Diff line change
`@@ -223,7 +223,7 @@ describe('session file operations', () => {`
`223`	`223`	`// Write random bytes that don't follow encryption format`
`224`	`224`	`const randomBytes = Buffer.alloc(100);`
`225`	`225`	`for (let i = 0; i < 100; i++) {`
`226`		`- randomBytes[i] = Math.floor(Math.random() * 256);`
	`226`	`+ randomBytes[i] = Math.floor(Math.random() * 256); // NOSONAR - intentionally using non-crypto random for test data`
`227`	`227`	`}`
`228`	`228`	`writeFileSync(sessionPath, randomBytes);`
`229`	`229`