Cylance interferes when loading jemalloc dynamically

Summary

Customer in https://gitlab.zendesk.com/agent/tickets/96642 was getting "permission denied" when attempting to run gitlab-rake db:migrate:

sudo gitlab-rake db:migrate
[sudo] password for git:
chpst: fatal: unable to run: /opt/gitlab/embedded/bin/bundle: permission denied

Permissions were checked all over the place, and there was much wailing and gnashing of teeth. Finally, we ran the gitlab-rake with strace and got this output: tracefile.txt

There was still gnashing of teeth, though, because the tracefile appeared to give no additional information. EXCEPT: at the beginning of the file I saw it was loading a Cylance shared object, and had just seen a reference to Cylance in this issue.

After disabling Cylance, all problems were resolved.

We need to figure out why Cylance thinks /opt/gitlab/embedded/bin/bundle is a virus?