Avoid matching CR (Yelp#271)

Author: XIANJUN ZHU

detect_secrets/plugins/db2.py

@@ -61,7 +61,7 @@ class Db2Detector(RegexBasedDetector):
     # catch any character except newline and quotations, we exclude these
     # because the regex will erronously match them when present at the end of the password
     # db2 password requirements vary by version so we cast a broad net
-    password = r'([^\n"\']+)'
+    password = r'([^\r\n"\']+)'
     denylist = (
         re.compile(
             r'{begin}{opt_quote}{opt_db}{opt_dash_undrscr}{password_keyword}{opt_quote}{opt_space}'

tests/plugins/db2_test.py

@@ -46,6 +46,7 @@ class TestGheDetector(object):
             (':anothersyntax!', 'pwd::anothersyntax!', True),
             ('@#!%#', 'DB2_PASSWORD = "@#!%#"', True),
             ('pass', 'dashdb-password = "pass"', True),
+            ('pass', 'dashdb-password = pass\r', True),
             ('', 'dashdb_host = notapassword', False),
             ('', 'someotherpassword = "doesnt start right"', False),
         ],