Discard variables ending with _file or _url as secret candidates

jsoriano commented 7 months ago

What does this PR do?

Disable variables ending with _file or _url as secret candidates.

Why is it important?

Reduce the number of false positives. Variables with potential secrets with these names use to refer to files that contain secrets, and not to secrets themselves.

Checklist

[x] I have added test packages to test/packages that prove my change is effective.
[x] I have added an entry in spec/changelog.yml.

Related issues

Proposed by @tetianakravchenko in https://github.com/elastic/integrations/issues/8610#issuecomment-1931620943

jsoriano commented 7 months ago

Excluding also variables ending with _url.

elasticmachine commented 7 months ago

:green_heart: Build Succeeded

Buildkite Build
Commit: b77219a29b3ec3de4e031bd2843f9450fc1cfebd

History

:green_heart: Build #546 succeeded a6f58d22b2fce22929f77c3689c59ff64238c6db

cc @jsoriano

elastic / package-spec