I've recently been trying out the preview of CodeGuru Security for static code analysis (we use GitHub so the integration is very nice). I'm pretty impressed with how it works so far, but have one nagging issue:
In a few cases, it has flagged something that is clearly a false positive. Is there some mechanism for me to flag this finding as such so that it doesn't keep showing up as a "critical" finding?