fix: add support for xml generic token

[cx-artur-ribeiro]

Proposed Changes

• The Generic-Api-Key regex (from generateSemiGenericRegexIncludingXml) expected an assignment operator (:, =, etc.) right after the keyword and its suffix. That matches YAML like token: ghp_... and plist-style ......, but not typical config XML: , where the secret is separated by another attribute (value="...) instead of an operator immediately after token or secret.

    <Parameter name="github_token" value="ghp_1234567890abcdefghijklmnopqrstuv"/>
    <Parameter name="jwt_secret" value="eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9"/>

• Added in utils.go, an optional bridge value=" (operatorOrXmlValue) before the operator, so that after matching the identifier (e.g. token in github_token) and the closing quote, the pattern can consume value=" and then match the secret (same idea as the existing plist bridge, but for attribute-style XML).

Checklist

• I covered my changes with tests.
• I Updated the documentation that is affected by my changes:
  • Change in the CLI arguments
  • Change in the configuration file

I submit this contribution under the Apache-2.0 license.

[github-actions]

KICS version: v2.1.20

Category Results CRITICAL 0 HIGH 0 MEDIUM 0 LOW 0 INFO 0 TRACE 0 TOTAL 0	Metric Values Files scanned 16 Files parsed 16 Files failed to scan 0 Total executed queries 52 Queries failed to execute 0 Execution time 0

[github-actions]

Checkmarx One – Scan Summary & Details – f93c2eab-93a3-47a2-989f-930809104570

Great job! No new security vulnerabilities introduced in this pull request