diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 03bc46cfd1..0150621ce9 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -36,7 +36,7 @@ jobs:
         run: |
           git config --global --add safe.directory /__w/WebGoat/WebGoat
           git remote -v  
-          git checkout develop
+          git checkout origin develop
           git pull origin develop
           
       - name: scan on diff files only
diff --git a/src/main/java/org/owasp/webgoat/lessons/clientsidefiltering/Salaries.java b/src/main/java/org/owasp/webgoat/lessons/clientsidefiltering/Salaries.java
index 984af10d17..d5deee8429 100644
--- a/src/main/java/org/owasp/webgoat/lessons/clientsidefiltering/Salaries.java
+++ b/src/main/java/org/owasp/webgoat/lessons/clientsidefiltering/Salaries.java
@@ -92,6 +92,7 @@ public List<Map<String, Object>> invoke() {
       sb.append("/Employees/Employee/LastName | ");
       sb.append("/Employees/Employee/SSN | ");
       sb.append("/Employees/Employee/Salary ");
+      // foo bar baz
 
       String expression = sb.toString();
       nodes = (NodeList) path.evaluate(expression, inputSource, XPathConstants.NODESET);