[Feature] Using CodeQL alert suppressions rather than LGTM alert suppressions (#826)

* [Feature] Using CodeQL alert suppressions rather than LGTM alert suppressions
Fixes #825

* [Feature] Using CodeQL alert suppressions rather than LGTM alert suppressions
Fixes #825

lgtm.yml

@@ -1,9 +0,0 @@
-#########################################################################################
-# Use the `queries` block to change the default display of query results.               #
-#########################################################################################
-
-queries:
-  # Ignore error: Disabling certificate validation is strongly discouraged
-  - exclude: js/disabling-certificate-validation
-  # Ignore warning: This replaces only the first occurrence of ''
-  - exclude: js/incomplete-sanitization

src/debugger/cdp-proxy/debuggerEndpointHelper.ts

@@ -110,7 +110,7 @@ export class DebuggerEndpointHelper {
             const requestOptions: https.RequestOptions = {};
 
             if (isSecure && targetAddressIsLoopback) {
-                requestOptions.rejectUnauthorized = false;
+                requestOptions.rejectUnauthorized = false; // CodeQL [js/disabling-certificate-validation] Debug extension does not need to verify certificate
             }
 
             const request = driver.get(url, requestOptions, response => {

tools/gulp-extras.js

@@ -17,7 +17,7 @@ const through = require("through2");
  * @param {string} message The error message to display
  */
 function logError(pluginName, file, message) {
-    const sourcePath = path.relative(__dirname, file.path).replace("../", "");
+    const sourcePath = path.relative(__dirname, file.path).replace("../", ""); // CodeQL [js/incomplete-sanitization] Debugging extension has no need to use global replacement in file path string
     log(`[${colors.cyan(pluginName)}] ${colors.red("error")} ${sourcePath}: ${message}`);
 }