Support non-root user in secrets analyzer

• Problem to solve
• Proposal
  • Implementation plan
• Intended users

Problem to solve

At the moment most of our analyzers use the default user per default. As outlined in Run Secure analyzers as non-root users (#197239 - closed) • Amar Patel, Tal Kopel • 17.4 we are planning to support a non-root user, and eventually use it by default.

Proposal

Conform the secrets analyzer (FIPs and non-FIPs images) to the accepted standard for users

1. non-FIPS image
2. FIPS image

Implementation plan

Follow Creates a gitlab non-root user (gitlab-org/security-products/analyzers/semgrep!507 - merged) • Tal Kopel • 17.5

Intended users

Personas are described at https://handbook.gitlab.com/handbook/product/personas/

• Alex (Security Operations Engineer)
• Cameron (Compliance Manager)