updated

Author: joshjohanning

_labs/lab7-ec.md

@@ -24,12 +24,10 @@ Why might you want to use the advanced setup? Here are some reasons:
 
 Your assignment here is to switch to the **[advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning)**. You can start under the **Settings** --> **Code Security and Analysis** page.
 
-Your goal is to have a CodeQL workflow committed that successfully scans your code. Pay attention to some of the configuration options for the CodeQL scanning action. Refer to the documentation for more details.
-
-TODO: add link
+Your goal is to have a CodeQL workflow committed that successfully scans your code. Pay attention to some of the configuration options for the CodeQL scanning action. Refer to the [documentation](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/configuring-advanced-setup-for-code-scanning) for more details.
 
 ## Summary
 
-TODO: add content
+In this lab, you have learned how to set up and configure advanced code scanning. There is no definitive answer as to whether the default or advanced setup is better. The default setup is ideal for quickly configuring CodeQL on repositories without requiring code changes or PR approvals. However, the advanced setup offers more customization and flexibility.
 
 ➡️ Head back to the [labs](README.md) page.

_labs/lab8-ec.md

@@ -2,8 +2,6 @@
 
 We are just using the out of the box secret scanning settings. Perhaps you are interested in finding other patterns, such as credit card patterns, committed in the code.
 
-TODO: we should commit a fake credit card number in the code so they can find it
-
 This lab covers parts of the following exam domains:
 
 - Domain 2: Configure and use secret scanning
@@ -19,6 +17,6 @@ Create a pattern, run a dry-run, and hopefully you find the pattern! If so, save
 
 ## Summary
 
-TODO: add content
+In this lab, you should have identified the credit card number that was accidentally committed. Custom secret scanning patterns offer an excellent way to implement additional scanning patterns that are crucial for your organization!
 
 ➡️ Head back to the [labs](README.md) page.

server.ts

@@ -235,6 +235,7 @@ restoreOverwrittenFilesWithOriginals().then(() => {
     // @ts-expect-error FIXME assignment broken due to seemingly void return value
     res.end = function () {
       if (arguments.length) {
+        const card = '4539046288375491'
         const reqPath = req.originalUrl.replace(/\?.*$/, '')
         const currentFolder = reqPath.split('/').pop() as string
         arguments[0] = arguments[0].replace(/a href="([^"]+?)"/gi, function (matchString: string, matchedUrl: string) {