From 2919a042981daf36c562695955dc056f5c79a167 Mon Sep 17 00:00:00 2001
From: Julian Thome <jthome@gitlab.com>
Date: Mon, 17 Mar 2025 15:06:27 +0100
Subject: [PATCH] Refine exists patterns in components template

---
 templates/sast.yml | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/templates/sast.yml b/templates/sast.yml
index 927d012..6dad115 100644
--- a/templates/sast.yml
+++ b/templates/sast.yml
@@ -154,9 +154,11 @@ semgrep-sast:
         - '**/*.swift'
         - '**/*.m'
         - '**/*.kt'
-        - '**/*.yml'
-        - '**/*.yaml'
         - '**/*.properties'
+        - '**/application*.yml'
+        - '**/bootstrap*.yml'
+        - '**/application*.yaml'
+        - '**/bootstrap*.yaml'
     ## In case gitlab-advanced-sast already covers all the files that semgrep-sast would have scanned
     - if: '$CI_COMMIT_BRANCH &&
           $GITLAB_FEATURES =~ /\bsast_advanced\b/ &&
@@ -190,9 +192,11 @@ semgrep-sast:
         - '**/*.kt'
         - '**/*.cjs'
         - '**/*.mjs'
-        - '**/*.yml'
-        - '**/*.yaml'
         - '**/*.properties'
+        - '**/application*.yml'
+        - '**/bootstrap*.yml'
+        - '**/application*.yaml'
+        - '**/bootstrap*.yaml'
         
 sobelow-sast:
   extends: .sast-analyzer