tslint analyzer ignores exclude rule

Summary

The TSLint Analyzer as part of SAST functionality appears to ignore exclusion rules. Similar exclusion rules for ESLint are applied correctly. For a NodeS project with a node_modules directory the TSLint analyzer attempts to process all files beneath regardless of exclude directives attempted.

Steps to reproduce

Added the following to tslint.json at project root with various globs defined (node_modules/**,**/node_modules/**, /node_modules/ etc)

  "linterOptions": {
    "exclude": [
      "node_modules"
    ]
  }

But according to documentation that is only relevant for CLI usage, so next attempt was the following within tsconfig.json

  "exclude": [
    "node_modules"
  ]

With no change in processing.

What is the current bug behavior?

Excluded path is processed. In the node_modules case the default was expected to be an ignore.

What is the expected correct behavior?

No files within the excluded path are processed.

Relevant logs and/or screenshots

2019/04/26 02:46:50 [tslint] Starting analyzer...
latest: Pulling from gitlab-org/security-products/analyzers/tslint
bdf0201b3a05: Already exists
5f3204895ca9: Pulling fs layer
dec794f057b2: Pulling fs layer
59dc59aebc85: Pulling fs layer
6e38e4682f89: Pulling fs layer
bffd45ef85bf: Pulling fs layer
6e38e4682f89: Waiting
bffd45ef85bf: Waiting
dec794f057b2: Verifying Checksum
dec794f057b2: Download complete
5f3204895ca9: Verifying Checksum
5f3204895ca9: Download complete
59dc59aebc85: Verifying Checksum
59dc59aebc85: Download complete
5f3204895ca9: Pull complete
6e38e4682f89: Verifying Checksum
6e38e4682f89: Download complete
dec794f057b2: Pull complete
bffd45ef85bf: Verifying Checksum
bffd45ef85bf: Download complete
59dc59aebc85: Pull complete
6e38e4682f89: Pull complete
bffd45ef85bf: Pull complete
Digest: sha256:7c712d987532ebaef336487c56934335a528e4ae88cc7b7cd3e98c1d09be7863
Status: Downloaded newer image for registry.gitlab.com/gitlab-org/security-products/analyzers/tslint:latest

Results of GitLab environment info

v11.9.8-ee

Results of GitLab application Check

See logs above

registry.gitlab.com/gitlab-org/security-products/analyzers/tslint:latest

Possible fixes

None

Edited by Martin Rowe