ignore codql jwt signature check

Signed-off-by: Huabing Zhao <[email protected]>

Author: zhaohuabing

internal/mcpproxy/authorization.go

@@ -34,8 +34,9 @@ func (m *MCPProxy) authorizeRequest(authorization *filterapi.MCPRouteAuthorizati
 	}
 
 	claims := jwt.MapClaims{}
-	// JWT verification is performed by Envoy before reaching here. So we only need to parse the token without verification.
 	parser := jwt.NewParser(jwt.WithoutClaimsValidation())
+	// JWT verification is performed by Envoy before reaching here. So we only need to parse the token without verification.
+	// codeql[go/missing-jwt-signature-check]
 	if _, _, err := parser.ParseUnverified(token, claims); err != nil {
 		m.l.Info("failed to parse JWT token", slog.String("error", err.Error()))
 		return false