1 files changed, 16 insertions, 16 deletions

diff --git a/doc/user/application_security/sast/index.md b/doc/user/application_security/sast/index.md
index fe285f3bfae..ab47cfc8ea1 100644
--- a/doc/user/application_security/sast/index.md
+++ b/doc/user/application_security/sast/index.md
@@ -310,9 +310,9 @@ To disable analyzer rules:
 
 1. Set the `disabled` flag to `true` in the context of a `ruleset` section
 
-1. In one or more `ruleset.identifier` sub sections, list the rules that you want disabled. Every `ruleset.identifier` section has: 
+1. In one or more `ruleset.identifier` sub sections, list the rules that you want disabled. Every `ruleset.identifier` section has:
 
-- a `type` field, to name the predefined rule identifier that the targeted analyzer uses. 
+- a `type` field, to name the predefined rule identifier that the targeted analyzer uses.
 
 - a `value` field, to name the rule to be disabled.
 
@@ -345,7 +345,7 @@ and `sobelow` by matching the `type` and `value` of identifiers:
 
 #### Synthesize a custom configuration
 
-To create a custom configuration, you can use passthrough chains. 
+To create a custom configuration, you can use passthrough chains.
 
 A passthrough is a single step in a passthrough chain. The passthrough is evaluated
 in a sequence to incrementally build a configuration. The configuration is then
@@ -359,8 +359,8 @@ parameters:
 | `description` | Description about the analyzer configuration section. |
 | `targetdir`   | The `targetdir` parameter defines the directory where the final configuration is located. If `targetdir` is empty, the analyzer uses a random directory. The maximum size of `targetdir` is 100MB. |
 | `validate`    | If set to `true`, the target files for passthroughs (`raw`, `file` and `url`) are validated. The validation works for `yaml`, `xml`, `json` and `toml` files. The proper validator is identified based on the extension of the target file. By default, `validate` is set to `false`. |
-| `interpolate` | If set to `true`, environment variable interpolation is enabled so that the configuration uses secrets/tokens. We advise using this feature with caution to not leak any secrets. By default, `interpolate` is set to `false`. | 
-| `timeout`     | The total `timeout` for the evaluation of a passthrough chain is set to 60 seconds. If `timeout` is not set, the default timeout is 60 seconds. The timeout cannot exceed 300 seconds. | 
+| `interpolate` | If set to `true`, environment variable interpolation is enabled so that the configuration uses secrets/tokens. We advise using this feature with caution to not leak any secrets. By default, `interpolate` is set to `false`. |
+| `timeout`     | The total `timeout` for the evaluation of a passthrough chain is set to 60 seconds. If `timeout` is not set, the default timeout is 60 seconds. The timeout cannot exceed 300 seconds. |
 
 A configuration section can include one or more passthrough sections. The maximum number of passthrough sections is 20.
 There are several types of passthroughs:
@@ -373,12 +373,12 @@ There are several types of passthroughs:
 | `url`  | Fetch the analyzer configuration through HTTP. |
 
 If multiple passthrough sections are defined in a passthrough chain, their
-position in the chain defines the order in which they are evaluated. 
+position in the chain defines the order in which they are evaluated.
 
-- Passthroughs listed later in the chain sequence have a higher precedence. 
+- Passthroughs listed later in the chain sequence have a higher precedence.
 - Passthroughs with a higher precedence overwrite (default) and append data
   yielded by previous passthroughs. This is useful for cases where you need to
-  use or modify an existing configuration. 
+  use or modify an existing configuration.
 
 Configure a passthrough these parameters:
 
@@ -453,7 +453,7 @@ file `gosec-config.json`:
 ##### Passthrough chain for semgrep
 
 In the below example, we generate a custom configuration under the `/sgrules`
-target directory with a total `timeout` of 60 seconds. 
+target directory with a total `timeout` of 60 seconds.
 
 Several passthrouh types generate a configuration for the target analyzer:
 
@@ -462,17 +462,17 @@ Several passthrouh types generate a configuration for the target analyzer:
   `97f7686` from the `sast-rules` Git repostory. From the `sast-rules` Git
   repository, only data from the `go` subdirectory is considered.
   - The `sast-rules` entry has a higher precedence because it appears later in
-    the configuration. 
+    the configuration.
   - If there is a filename collision between files in both repositories, files
     from the `sast` repository overwrite files from the `myrules` repository,
     as `sast-rules` has higher precedence.  
 - The `raw` entry creates a file named `insecure.yml` under `/sgrules`. The
-  full path is `/sgrules/insecure.yml`. 
+  full path is `/sgrules/insecure.yml`.
 - The `url` entry fetches a configuration made available through a URL and
-  stores it in the `/sgrules/gosec.yml` file. 
+  stores it in the `/sgrules/gosec.yml` file.
 
 Afterwards, semgrep is invoked with the final configuration located under
-`/sgrules`. 
+`/sgrules`.
 
 ```toml
 [semgrep]
@@ -536,17 +536,17 @@ It does not explicitly store credentials in the configuration file. To reduce th
 ##### Configure the append mode for passthroughs
 
 To append data to previous passthroughs, use the `append` mode for the
-passthrough types `file`, `url`, and `raw`. 
+passthrough types `file`, `url`, and `raw`.
 
 Passthroughs in `override` mode overwrite files
 created when preceding passthroughs in the chain find a naming
 collision. If `mode` is set to `append`, a passthrough appends data to the
-files created by its predecessors instead of overwriting. 
+files created by its predecessors instead of overwriting.
 
 In the below semgrep configuration,`/sgrules/insecure.yml` assembles two passthroughs. The rules are:
 
 - `insecure`
-- `secret` 
+- `secret`
 
 These rules add a search pattern to the analyzer and extends semgrep capabilities.