I can see a few false positive issues come up with a few key types, particularly with GitHub. I'd recommend a bi-annual review of key changes to see if regex patterns need to be updated. Gitleaks does a good job at this and I'd recommend to take a look at some of their config files as reference.