fix paths to snippets

risks/MASVS-STORAGE/1-store-sensitive-data-securely/data-unencrypted-shared-storage-no-user-interaction/android-data-unencrypted-shared-storage-no-user-interaction-dynamic-file-diff/demo-1/demo.md

@@ -19,7 +19,7 @@ The snippet below shows sample code that creates two files in the external stora
 4. Execute `run_after.sh`.
 5. Close the app once you finish testing.
 
-{{ run.sh }}
+{{ run_before.sh # run_after.sh }}
 
 ### Observation
 
@@ -31,11 +31,11 @@ Their content is inside the `./new_files/` directory and contains:
 
 A password:
 
-{{ secret.txt }}
+{{ new_files/secret.txt }}
 
 And an API key:
 
-{{ secretFile75.txt }}
+{{ new_files/secretFile75.txt }}
 
 ### Evaluation
 

risks/MASVS-STORAGE/1-store-sensitive-data-securely/data-unencrypted-shared-storage-no-user-interaction/android-data-unencrypted-shared-storage-no-user-interaction-static/demo-1/demo.md

@@ -9,15 +9,9 @@ code: [kotlin, xml]
 
 The snippet below shows sample code that creates a file in external storage without using scoped storage APIs. The `getExternalStorageDirectory` API returns a path to the root of the shared external storage (e.g. `/storage/emulated/0`).
 
-{{ MastgTest.kt }}
-
-{{ MastgTest_reversed.java }}
-
 This requires special app access called ["All files access"](https://developer.android.com/preview/privacy/storage#all-files-access), so the `MANAGE_EXTERNAL_STORAGE` permission must be declared in the manifest file.
 
-{{ AndroidManifest.xml }}
-
-{{ AndroidManifest_reversed.xml }}
+{{ MastgTest.kt # MastgTest_reversed.java # AndroidManifest.xml # AndroidManifest_reversed.xml }}
 
 ### Steps
 
@@ -33,13 +27,9 @@ And another one against the sample manifest file.
 
 ### Observation
 
-The rule has identified one location in the code file where an API, `getExternalStorageDirectory`, is used to write to external storage.
-
-{{ output.txt }}
-
-The rule has also identified that the manifest file declares `MANAGE_EXTERNAL_STORAGE` permission.
+The rule has identified one location in the code file where an API, `getExternalStorageDirectory`, is used to write to external storage as well as the location in the manifest file where the `MANAGE_EXTERNAL_STORAGE` permission is declared.
 
-{{ output2.txt }}
+{{ output.txt # output2.txt }}
 
 ### Evaluation
 

risks/MASVS-STORAGE/1-store-sensitive-data-securely/data-unencrypted-shared-storage-no-user-interaction/android-data-unencrypted-shared-storage-no-user-interaction-static/demo-2/demo.md

@@ -9,9 +9,7 @@ code: [kotlin]
 
 The snippet below shows sample code that creates a file in external storage using the `getExternalFilesDir` API which returns a path to the app's external files directory (e.g. `/storage/emulated/0/Android/data/org.owasp.mastestapp/files`) and does not require any permissions to access. Scoped storage applies since the app targets Android 12 (API level 31) which is higher than Android 10 (API level 29).
 
-{{ MastgTest.kt }}
-
-{{ MastgTest_reversed.java }}
+{{ MastgTest.kt # MastgTest_reversed.java }}
 
 ### Steps
 

risks/MASVS-STORAGE/1-store-sensitive-data-securely/data-unencrypted-shared-storage-no-user-interaction/android-data-unencrypted-shared-storage-no-user-interaction-static/demo-3/demo.md

@@ -9,9 +9,7 @@ code: [kotlin]
 
 The snippet below shows sample code that uses the `MediaStore` API to write a file to shared storage in a path like `/storage/emulated/0/Download/` which does not require any permissions to access and is shared with other apps.
 
-{{ MastgTest.kt }}
-
-{{ MastgTest_reversed.java }}
+{{ MastgTest.kt # MastgTest_reversed.java }}
 
 ### Steps