From 70bf539546a6e118728e32e63d35673fec446f19 Mon Sep 17 00:00:00 2001
From: il <il@ilnmors.internal>
Date: Sat, 2 May 2026 20:40:10 +0900
Subject: [PATCH] docs(issues): fix crowdsec whitelist regex to whitelist
 expressions

---
 docs/issues/crowdsec/260321_actual_budget.md | 2 +-
 docs/issues/crowdsec/260321_immich.md        | 4 ++--
 docs/issues/crowdsec/260404_opencloud.md     | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/issues/crowdsec/260321_actual_budget.md b/docs/issues/crowdsec/260321_actual_budget.md
index 9494aa0..c5d7417 100644
--- a/docs/issues/crowdsec/260321_actual_budget.md
+++ b/docs/issues/crowdsec/260321_actual_budget.md
@@ -26,7 +26,7 @@
 - Access to fw
   - Check the ban list with `sudo cscli alerts list`
   - Read the ban case with `sudo cscli alerts inspect $NUMBER`
-- Add regex on whitelist
+- Add expressions on whitelist
   - evt.Meta.target_fqdn == '{{ services['actualbudget']['domain']['public'] }}.{{ domain['public'] }}' && evt.Meta.http_path contains '/data/migrations/'
 - Delete false positive decision
   - Check false positive decision with `sudo cscli decision list`
diff --git a/docs/issues/crowdsec/260321_immich.md b/docs/issues/crowdsec/260321_immich.md
index 8cbedbe..bfc33ed 100644
--- a/docs/issues/crowdsec/260321_immich.md
+++ b/docs/issues/crowdsec/260321_immich.md
@@ -25,8 +25,8 @@
 - Access to fw
   - Check the ban list with `sudo cscli alerts list`
   - Read the ban case with `sudo cscli alerts inspect $NUMBER`
-- Add regex on whitelist
-  - evt.Meta.target_fqdn == 'Immich.ilnmors.com' && evt.Meta.http_path contains '/api/assets/' && evt.Meta.http_path contains '/thumbnail'
+- Add expressions on whitelist
+  - evt.Meta.target_fqdn == '{{ services['immich']['domain']['public'] }}.{{ domain['public'] }}' && evt.Meta.http_path contains '/api/assets/' && evt.Meta.http_path contains '/thumbnail'
 - Delete false positive decision
   - Check false positive decision with `sudo cscli decision list`
   - Delete false positive decision with `sudo cscli decision delete --id $ID`
diff --git a/docs/issues/crowdsec/260404_opencloud.md b/docs/issues/crowdsec/260404_opencloud.md
index a0d04b5..2b66977 100644
--- a/docs/issues/crowdsec/260404_opencloud.md
+++ b/docs/issues/crowdsec/260404_opencloud.md
@@ -25,7 +25,7 @@
 - Access to fw
   - Check the ban list with `sudo cscli alerts list`
   - Read the ban case with `sudo cscli alerts inspect $NUMBER`
-- Add regex on whitelist
+- Add expressions on whitelist
   - evt.Meta.target_fqdn == '{{ services['opencloud']['domain']['public'] }}.{{ domain['public'] }}' && evt.Meta.http_path contains '/js/chunks/'
 - Delete false positive decision
   - Check false positive decision with `sudo cscli decision list`