Secrets analyzer times out on large projects
Summary
The Secrets analyzer is taking too long to run, and eventually times out, making the whole SAST job failing on large projects.
Steps to reproduce
- Run
sast
on GitLab-CE/EE
Example Project
What is the current bug behavior?
The job fails because of a timeout in sast (20 minutes).
What is the expected correct behavior?
- Job doesn't timeout
- Job is running in a few minutes (raising the timeout isn't an option, 20 minutes is already too much)
Relevant logs and/or screenshots
https://gitlab.com/gitlab-org/gitlab-ee/-/jobs/185779527
Possible fixes
- Identify the tool taking so much time and investigate
- Ignore some directories, like vendored libraries
/cc @twoodham for Priority and Severity /cc @bikebilly