diff --git a/templates/sast.yml b/templates/sast.yml
index fe97d3f..a169ccb 100644
--- a/templates/sast.yml
+++ b/templates/sast.yml
@@ -21,9 +21,6 @@ spec:
       type: boolean
     include_experimental:
       default: 'false'
-    ff_glas_enable_php_support:
-      default: true
-      type: boolean
 ---
 .sast-analyzer:
   stage: $[[ inputs.stage ]]
@@ -51,82 +48,12 @@ spec:
   rules:
     - when: never
 
-.gitlab-advanced-sast-exist-rules:
-  exists:
-    - '**/*.py'
-    - '**/*.go'
-    - '**/*.java'
-    - '**/*.jsp'
-    - '**/*.js'
-    - '**/*.jsx'
-    - '**/*.ts'
-    - '**/*.tsx'
-    - '**/*.cjs'
-    - '**/*.mjs'
-    - '**/*.cs'
-    - '**/*.rb'
-    - '**/*.php'
-
-.semgrep-with-advanced-sast-exist-rules:
-  exists:
-    - '**/*.c'
-    - '**/*.cc'
-    - '**/*.cpp'
-    - '**/*.c++'
-    - '**/*.cp'
-    - '**/*.cxx'
-    - '**/*.h'
-    - '**/*.hpp'
-    - '**/*.scala'
-    - '**/*.sc'
-    - '**/*.php'
-    - '**/*.swift'
-    - '**/*.m'
-    - '**/*.kt'
-    - '**/*.properties'
-    - '**/application*.yml'
-    - '**/bootstrap*.yml'
-    - '**/application*.yaml'
-    - '**/bootstrap*.yaml'
-
-.semgrep-exist-rules:
-  exists:
-    - '**/*.py'
-    - '**/*.js'
-    - '**/*.jsx'
-    - '**/*.ts'
-    - '**/*.tsx'
-    - '**/*.c'
-    - '**/*.cc'
-    - '**/*.cpp'
-    - '**/*.c++'
-    - '**/*.cp'
-    - '**/*.cxx'
-    - '**/*.h'
-    - '**/*.hpp'
-    - '**/*.go'
-    - '**/*.java'
-    - '**/*.cs'
-    - '**/*.scala'
-    - '**/*.sc'
-    - '**/*.php'
-    - '**/*.swift'
-    - '**/*.m'
-    - '**/*.rb'
-    - '**/*.kt'
-    - '**/*.cjs'
-    - '**/*.mjs'
-    - '**/*.properties'
-    - '**/application*.yml'
-    - '**/bootstrap*.yml'
-    - '**/application*.yaml'
-    - '**/bootstrap*.yaml'
-
 gitlab-advanced-sast:
   extends: .sast-analyzer
   image:
     name: "$[[ inputs.image_prefix ]]/gitlab-advanced-sast:${SAST_ANALYZER_IMAGE_TAG}$[[ inputs.image_suffix ]]"
   variables:
+    FF_GLAS_ENABLE_PHP_SUPPORT: 'true'
     SAST_ANALYZER_IMAGE_TAG: 2
     SEARCH_MAX_DEPTH: 20
   cache:
@@ -142,7 +69,20 @@ gitlab-advanced-sast:
       when: never
     - if: $CI_COMMIT_BRANCH &&
           $GITLAB_FEATURES =~ /\bsast_advanced\b/
-      exists: !reference [.gitlab-advanced-sast-exist-rules, exists]
+      exists:
+        - '**/*.py'
+        - '**/*.go'
+        - '**/*.java'
+        - '**/*.jsp'
+        - '**/*.js'
+        - '**/*.jsx'
+        - '**/*.ts'
+        - '**/*.tsx'
+        - '**/*.cjs'
+        - '**/*.mjs'
+        - '**/*.cs'
+        - '**/*.rb'
+        - '**/*.php'
 
 brakeman-sast:
   extends: .deprecated-16.8
@@ -200,33 +140,71 @@ semgrep-sast:
   rules:
     - if: '"$[[ inputs.excluded_analyzers ]]" =~ /semgrep/'
       when: never
-    # When advanced SAST runs with PHP support enabled
+    # In case gitlab-advanced-sast also runs, exclude files already scanned by gitlab-advanced-sast
     - if: '$CI_COMMIT_BRANCH &&
           $GITLAB_FEATURES =~ /\bsast_advanced\b/ &&
           "$[[ inputs.excluded_analyzers ]]" !~ /gitlab-advanced-sast/ &&
-          "$[[ inputs.run_advanced_sast ]]" == "true" &&
-          "$[[ inputs.ff_glas_enable_php_support ]]" == "true"'
+          "$[[ inputs.run_advanced_sast ]]" == "true"'
       variables:
         SAST_EXCLUDED_PATHS: "$DEFAULT_SAST_EXCLUDED_PATHS, **/*.py, **/*.go, **/*.java, **/*.js, **/*.jsx, **/*.ts, **/*.tsx, **/*.cjs, **/*.mjs, **/*.cs, **/*.rb, **/*.php"
-      exists: !reference [.semgrep-with-advanced-sast-exist-rules, exists]
-    # When advanced SAST runs but PHP support is disabled
-    - if: '$CI_COMMIT_BRANCH &&
-          $GITLAB_FEATURES =~ /\bsast_advanced\b/ &&
-          "$[[ inputs.excluded_analyzers ]]" !~ /gitlab-advanced-sast/ &&
-          "$[[ inputs.run_advanced_sast ]]" == "true" &&
-          "$[[ inputs.ff_glas_enable_php_support ]]" != "true"'
-      variables:
-        SAST_EXCLUDED_PATHS: "$DEFAULT_SAST_EXCLUDED_PATHS, **/*.py, **/*.go, **/*.java, **/*.js, **/*.jsx, **/*.ts, **/*.tsx, **/*.cjs, **/*.mjs, **/*.cs, **/*.rb"
-      exists: !reference [.semgrep-with-advanced-sast-exist-rules, exists]
-    # Fallback when advanced SAST covers everything
+      exists:
+        - '**/*.c'
+        - '**/*.cc'
+        - '**/*.cpp'
+        - '**/*.c++'
+        - '**/*.cp'
+        - '**/*.cxx'
+        - '**/*.h'
+        - '**/*.hpp'
+        - '**/*.scala'
+        - '**/*.sc'
+        - '**/*.php'
+        - '**/*.swift'
+        - '**/*.m'
+        - '**/*.kt'
+        - '**/*.properties'
+        - '**/application*.yml'
+        - '**/bootstrap*.yml'
+        - '**/application*.yaml'
+        - '**/bootstrap*.yaml'
+    ## In case gitlab-advanced-sast already covers all the files that semgrep-sast would have scanned
     - if: '$CI_COMMIT_BRANCH &&
           $GITLAB_FEATURES =~ /\bsast_advanced\b/ &&
           "$[[ inputs.excluded_analyzers ]]" !~ /gitlab-advanced-sast/ &&
           "$[[ inputs.run_advanced_sast ]]" == "true"'
       when: never
-    # Default case - run for all supported files
     - if: $CI_COMMIT_BRANCH
-      exists: !reference [.semgrep-exist-rules, exists]
+      exists:
+        - '**/*.py'
+        - '**/*.js'
+        - '**/*.jsx'
+        - '**/*.ts'
+        - '**/*.tsx'
+        - '**/*.c'
+        - '**/*.cc'
+        - '**/*.cpp'
+        - '**/*.c++'
+        - '**/*.cp'
+        - '**/*.cxx'
+        - '**/*.h'
+        - '**/*.hpp'
+        - '**/*.go'
+        - '**/*.java'
+        - '**/*.cs'
+        - '**/*.scala'
+        - '**/*.sc'
+        - '**/*.php'
+        - '**/*.swift'
+        - '**/*.m'
+        - '**/*.rb'
+        - '**/*.kt'
+        - '**/*.cjs'
+        - '**/*.mjs'
+        - '**/*.properties'
+        - '**/application*.yml'
+        - '**/bootstrap*.yml'
+        - '**/application*.yaml'
+        - '**/bootstrap*.yaml'
 
 sobelow-sast:
   extends: .sast-analyzer