Merge branch 'develop' into fix_3376

kurt-r2c · web-flow · commit 87007a841a1f · 2025-06-02T11:51:06.000-07:00
diff --git a/generic/secrets/gitleaks/generic-api-key.yaml b/generic/secrets/gitleaks/generic-api-key.yaml
@@ -38,7 +38,7 @@ rules:
       - "*bundle.js"
       - "*pnpm-lock*"
       - "*Podfile.lock"
-      - "*/openssl/*.h"
+      - "**/*/openssl/*.h"
       - "*.xcscmblueprint"
   patterns:
     # The original regex from gitleaks is in this rule https://semgrep.dev/playground/s/57qk (but its very noisy) even with our entropy analyzer
diff --git a/generic/secrets/security/detected-artifactory-password.yaml b/generic/secrets/security/detected-artifactory-password.yaml
@@ -21,7 +21,7 @@ rules:
         - "*bundle.js"
         - "*pnpm-lock*"
         - "*Podfile.lock"
-        - "*/openssl/*.h"
+        - "**/*/openssl/*.h"
         - "*.xcscmblueprint"
     message: Artifactory token detected
     severity: ERROR
diff --git a/generic/secrets/security/detected-artifactory-token.yaml b/generic/secrets/security/detected-artifactory-token.yaml
@@ -16,7 +16,7 @@ rules:
       - "*bundle.js"
       - "*pnpm-lock*"
       - "*Podfile.lock"
-      - "*/openssl/*.h"
+      - "**/*/openssl/*.h"
       - "*.xcscmblueprint"
       - "*cargo.lock"
   message: Artifactory token detected
diff --git a/generic/secrets/security/detected-sonarqube-docs-api-key.yaml b/generic/secrets/security/detected-sonarqube-docs-api-key.yaml
@@ -16,7 +16,7 @@ rules:
       - "*bundle.js"
       - "*pnpm-lock*"
       - "*Podfile.lock"
-      - "*/openssl/*.h"
+      - "**/*/openssl/*.h"
       - "*.xcscmblueprint"
   metadata:
     cwe:
