Fix calipso formatting , to relaxed wild cards

137 and 148 were breaking regexp searches

Certain lines are far to open and allow existing risks to pass.

Change-Id: Ie80ac9370484ed0f56f6bd78cad5808b66a29b0e
Signed-off-by: lhinds <lhinds@redhat.com>

diff --git a/exceptions/calipso.yaml b/exceptions/calipso.yaml
index 576a826..1b514e3 100644 (file)
--- a/exceptions/calipso.yaml
+++ b/exceptions/calipso.yaml
@@ -134,9 +134,7 @@ file_audits:
     - "password: { type: String }"
     - password=_?pwd
     - password=self[.]pwd
-    - "ssh_password": self.require
-    - "\"passwordCredentials\":"
-    - "\"password\" *:"
+    - "ssh_password\": self.require"
     - dbpassword
     - credentials\\['password']\\]
     - Password for the Calipso MongoDB
@@ -145,7 +143,6 @@ file_audits:
     - ip netns exec
     - "\"private_key_file\" :"
     - "history. : .eval: value\\.last"
-    - subprocess\.(popen\|check_output\)(.*, shell=True)
     - get_ssh
     - for_sftp
     - write to remote host prepare dir - use sftp