Disable Axivion reports for Qt-Security-QDataStreamOperatorRead

This currently flags 294 occurences in Qt Core as errors, practically all of them related to the implemenation of QDataStream related functionality. I think this generally at the wrong level, certainly for Qt Core, but also for user code: operator>> is (besides operator<<) /the/ main reason to use the QDataStream class, so if we consider this risky, QDataStream itself should not be used, i.e. it would be better to flagging code that creates QDataStream objects not every use of operator>> of such objects. Change-Id: If758bde3a77f64cc8c06f8328459dfcd2d94dc8f Reviewed-by: Matti Paaso <matti.paaso@qt.io>
2026-02-01 19:36:04 +08:00 · 2025-11-11 15:30:46 +01:00
parent cdf01ee62c
commit 679593460e
1 changed files with 1 additions and 1 deletions
--- a/coin/provisioning/common/linux/axivion/rule_config.json
+++ b/coin/provisioning/common/linux/axivion/rule_config.json
@@ -195,7 +195,7 @@
            "_active": true
        },
        "Qt-Security-QDataStreamOperatorRead": {
-            "_active": true
+            "_active": false
        },
        "Qt-Security-QDtlsIgnoreVerificationErrors": {
            "_active": true