From 958e1f11f77076188bcdf0811bbd50be68d0a18b Mon Sep 17 00:00:00 2001
From: DmitriyLewen <91113035+DmitriyLewen@users.noreply.github.com>
Date: Tue, 9 Jan 2024 17:51:30 +0600
Subject: [PATCH] fix(secret): `AWS Secret Access Key` must include only
 secrets with `aws` text. (#5901)

---
 pkg/fanal/secret/builtin-rules.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/fanal/secret/builtin-rules.go b/pkg/fanal/secret/builtin-rules.go
index ce6baa99a245..94da8a3b722a 100644
--- a/pkg/fanal/secret/builtin-rules.go
+++ b/pkg/fanal/secret/builtin-rules.go
@@ -78,7 +78,7 @@ const (
 	startSecret = `(^|\s+)`
 	endSecret   = `(\s+|$)`
 
-	aws = `(aws)?_?`
+	aws = `aws_?`
 )
 
 // This function is exported for trivy-plugin-aqua purposes only