add go-pillage-registries

Author: wurstbrot

data/TestandVerification.yml

@@ -613,8 +613,8 @@ Static depth for infrastructure:
     samm: EH2-B
     samm2: v-security-testing|A|1
   Stored Secrets:
-    risk: Stored secrets in git history or directly in code shouldn't exists because they might be read unauthorized.
-    measure: Test for secrets in code and history
+    risk: Stored secrets in git history, in container images or directly in code shouldn't exists because they might be read unauthorized.
+    measure: Test for secrets in code, container images and history
     difficultyOfImplementation:
       knowledge: 2
       time: 1
@@ -623,5 +623,6 @@ Static depth for infrastructure:
     level: 2
     implementation:
       - <a href="https://github.com/dxa4481/truffleHog">truffleHog</a>
+      - <a href="https://github.com/nccgroup/go-pillage-registries">go-pillage-registries</a>
     samm2: v-security-testing|A|1  
 ...