[Compliance] CodeQL alerts due to missing justifications

[GrabYourPitchforks]

We're seeing three CodeQL policy violations for these lines:

source-indexer/src/SourceBrowser/src/HtmlGenerator/Utilities/Paths.cs

Line 273 in 50c6287

using (var md5 = MD5.Create()) // lgtm [cs/weak-crypto] Not used for crypto

source-indexer/src/SourceBrowser/src/HtmlGenerator/Utilities/Paths.cs

Line 283 in 50c6287

using (var md5 = MD5.Create()) // lgtm [cs/weak-crypto] Not used for crypto

source-indexer/src/SourceBrowser/src/SourceIndexServer/Controllers/SymbolsController.cs

Line 121 in 50c6287

using (var md5 = MD5.Create()) // lgtm [cs/weak-crypto] Not used for crypto

The justification string is insufficient to meet policy requirements. The suppression string must at minimum contain:

• Why it's not possible to use a different algorithm; and
• One of:
  • Why we don't think a collision is likely to occur; or
  • Why the consequences of a collision are uninteresting.