Abstract rule definitions to only .gitleaks.toml in the Secrets Analyzer
Summary
Remove rule description mappings from https://gitlab.com/gitlab-org/security-products/analyzers/secrets/-/blob/master/gitleaks/rule.go and instead use the gitleaks.toml description field to define the descriptions we want to see displayed in the security report.
Improvements
By removing gitleaks/rule.go
we remove the maintenence cost of having to update both rule.go
and the configuration file when we add/change a rule. This also prevents us from running into bugs like the one fixed in this MR gitlab-org/security-products/analyzers/secrets!57 (comment 389914423).