refined patterns

templates/sast.yml

@@ -156,12 +156,8 @@ semgrep-sast:
         - '**/*.kt'
         - '**/*.properties'
         - '**/application*.yml'
-        - '**/management*.yml'
-        - '**/actuator*.yml'
         - '**/bootstrap*.yml'
         - '**/application*.yaml'
-        - '**/management*.yaml'
-        - '**/actuator*.yaml'
         - '**/bootstrap*.yaml'
     ## In case gitlab-advanced-sast already covers all the files that semgrep-sast would have scanned
     - if: '$CI_COMMIT_BRANCH &&
@@ -199,6 +195,10 @@ semgrep-sast:
         - '**/*.yml'
         - '**/*.yaml'
         - '**/*.properties'
+        - '**/application*.yml'
+        - '**/bootstrap*.yml'
+        - '**/application*.yaml'
+        - '**/bootstrap*.yaml'
         
 sobelow-sast:
   extends: .sast-analyzer