Using CredScan suppression files to ignore False Positives while mirroring Gitlab repos to ADO
Currently we are using a Credscan suppression file in Register and WKS service to suppress warnings raised by Credscan task enabled in ADO Repository during the mirroring task.
The suppression file can be checked in any of the branches in Gitlab which helps in ignoring flagged lines of code in all other branches in Gitlab as well.
Here is the CredScanSuppressions file used in WKS service [Link]
This solution is opted from the 1es wiki here