fix: extend whitespace detection in generic-api-key (#343)

<!--
Thanks for contributing to 2ms by offering a pull request.
-->

**Proposed Changes**

<!--
Increasing whitespace limit to better address secrets spread in newlines
with increased identation
-->

**Checklist**

- [x] I covered my changes with tests.
- [ ] I Updated the documentation that is affected by my changes:
  - [ ] Change in the CLI arguments
  - [ ] Change in the configuration file

I submit this contribution under the Apache-2.0 license.

Author: cx-rui-gomes

engine/engine_test.go

@@ -184,6 +184,11 @@ func TestSecrets(t *testing.T) {
 			Name:       "Generic Api Key",
 			ShouldFind: false,
 		},
+		{
+			Content:    "SecretKey: \n\t\t\t              'NzFEUDg0Y0Jtc25sbko4VU96Q3VxM184bGkxV2xEb0twajY3ZFVybEtrcj0=',",
+			Name:       "Generic Api Key",
+			ShouldFind: true,
+		},
 	}
 
 	detector, err := initEngine(&EngineConfig{

engine/rules/utils.go

@@ -24,7 +24,7 @@ const (
 	// boundaries for the secret
 	// \x60 = `
 	secretPrefixUnique       = `\b(`
-	secretPrefix             = `[\x60'"\s=]{0,5}(`                                        //nolint:gosec // This is a regex pattern
+	secretPrefix             = `[\x60'"\s=]{0,20}(`                                       //nolint:gosec // This is a regex pattern
 	secretSuffix             = `)(?:[\x60'"\s;]|\\[nr]|$)`                                //nolint:gosec // This is a regex pattern
 	secretSuffixIncludingXml = `)(?:['|\"|\n|\r|\s|\x60|;]|\\n|\\r|$|\s{0,10}<\/string>)` //nolint:gosec // This is a regex pattern
 )