From 8ed5180c774181385f547d56e3ddee2c629c4749 Mon Sep 17 00:00:00 2001
From: Thomas Widhalm <thomas.widhalm@netways.de>
Date: Wed, 6 Nov 2024 17:10:10 +0100
Subject: [PATCH] Add exception to KICS for http in non-security scenario
 (#353)

We need to use `http` without `s` for certain scenarios. This commit
will introduce an exception so KICS will not complain about it.
---
 molecule/elasticsearch_no-security/verify.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/molecule/elasticsearch_no-security/verify.yml b/molecule/elasticsearch_no-security/verify.yml
index 601be29f..83c81352 100644
--- a/molecule/elasticsearch_no-security/verify.yml
+++ b/molecule/elasticsearch_no-security/verify.yml
@@ -9,8 +9,10 @@
   tasks:
 
 # Remember, this is the no-security scenario. So no https
+# The comment below will create an exception for KICS security scan
     - name: Health check
       ansible.builtin.uri:
+# kics-scan ignore-line
         url: http://localhost:{{ elasticstack_elasticsearch_http_port }}/_cluster/health
         method: GET
         return_content: yes
@@ -24,6 +26,7 @@
 
     - name: Node check
       ansible.builtin.uri:
+# kics-scan ignore-line
         url: http://localhost:{{ elasticstack_elasticsearch_http_port }}/_cat/nodes
         method: GET
         return_content: yes