From f740f91b5e68a53b0f88e7fdadf0b9eea8569dd1 Mon Sep 17 00:00:00 2001
From: Hendrik Buchwald
 <64110887+hendrik-buchwald-sonarsource@users.noreply.github.com>
Date: Tue, 9 Jul 2024 11:39:30 +0200
Subject: [PATCH]  Modify rule S6992/S6999: Add missing variables (APPSEC-1885)
 (#4047)

---
 rspec-tools/rspec_template/single_language/secrets/rule.adoc | 2 ++
 rules/S6992/secrets/rule.adoc                                | 2 ++
 rules/S6999/secrets/rule.adoc                                | 2 ++
 3 files changed, 6 insertions(+)

diff --git a/rspec-tools/rspec_template/single_language/secrets/rule.adoc b/rspec-tools/rspec_template/single_language/secrets/rule.adoc
index bae2119bf9..28f3a64def 100644
--- a/rspec-tools/rspec_template/single_language/secrets/rule.adoc
+++ b/rspec-tools/rspec_template/single_language/secrets/rule.adoc
@@ -18,6 +18,8 @@ exploiting the secret.
 
 // Where possible, use predefined content for common impacts. This content can
 // be found in the folder "shared_content/secrets/impact".
+// When using predefined content, search for any required variables to be set and include them in this file.
+// Not adding them will not trigger warnings.
 
 //include::../../../shared_content/secrets/impact/some_impact.adoc[]
 
diff --git a/rules/S6992/secrets/rule.adoc b/rules/S6992/secrets/rule.adoc
index a629c00446..9534ab2c95 100644
--- a/rules/S6992/secrets/rule.adoc
+++ b/rules/S6992/secrets/rule.adoc
@@ -16,6 +16,8 @@ exploiting the secret.
 // "An attacker can use this {secret_type} to ..."
 :secret_type: token
 
+:service_name: Equinix
+
 include::../../../shared_content/secrets/impact/infrastructure_takeover.adoc[]
 
 include::../../../shared_content/secrets/impact/data_compromise.adoc[]
diff --git a/rules/S6999/secrets/rule.adoc b/rules/S6999/secrets/rule.adoc
index 22dc5b5fc6..8de984c35f 100644
--- a/rules/S6999/secrets/rule.adoc
+++ b/rules/S6999/secrets/rule.adoc
@@ -16,6 +16,8 @@ exploiting the secret.
 // "An attacker can use this {secret_type} to ..."
 :secret_type: application key or consumer key
 
+:service_name: OVH
+
 include::../../../shared_content/secrets/impact/infrastructure_takeover.adoc[]
 
 include::../../../shared_content/secrets/impact/data_compromise.adoc[]