MetaMask
diff --git a/‎rules/src/github-actions/publish-actions-cache-used.yaml‎
Lines changed: 6 additions & 6 deletions b/‎rules/src/github-actions/publish-actions-cache-used.yaml‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎rules/src/js/hello-world.yml‎
Lines changed: 0 additions & 14 deletions b/‎rules/src/js/hello-world.yml‎
Lines changed: 0 additions & 14 deletions
diff --git a/‎rules/test/js/hello-world.js‎
Lines changed: 0 additions & 5 deletions b/‎rules/test/js/hello-world.js‎
Lines changed: 0 additions & 5 deletions
@@ -6,19 +6,19 @@ rules:
     metadata:
       tags: [security]
       shortDescription: Potential cache poisoning risk by using `actions/cache` in a publishing workflow.
+      confidence: MEDIUM
       help: |
         ## Remediation
-        We recommend avoiding using `actions/cache` if this workflow publishes a release, or has access to sensitive secrets. 
+        We recommend avoiding using `actions/cache` if this workflow publishes a release or has access to sensitive secrets. 
         If caching is required, please see https://github.com/MetaMask/MetaMask-planning/issues/3925 for a workaround.
     message: >-
         Using GitHub's Action Cache in publishing workflows, especially in open source repositories, can be dangerous. See
         https://github.com/MetaMask/MetaMask-planning/issues/3925 for more details and alternative recommendations.
     patterns:
-      - patterns:
-          - pattern: "uses: $ACTION_NAME"
-          - metavariable-regex:
-              metavariable: $ACTION_NAME
-              regex: actions/cache@v[0-9]+
+        - pattern: "uses: $ACTION_NAME"
+        - metavariable-regex:
+            metavariable: $ACTION_NAME
+            regex: actions/cache@.+
     paths:
       include:
         - ".github/**/*publish*.yml"