fix(core): Reduce memory usage in credentials risk auditing (n8n-io#7663

)
netroy · Nov 9, 2023 · 9fd6319 · 9fd6319
1 parent 5edf722
commit 9fd6319
Showing 1 changed file with 27 additions and 17 deletions.
diff --git a/packages/cli/src/audit/risks/credentials.risk.ts b/packages/cli/src/audit/risks/credentials.risk.ts
@@ -1,13 +1,16 @@
-import type { FindOperator } from 'typeorm';
-import { MoreThanOrEqual } from 'typeorm';
+import { In, MoreThanOrEqual } from 'typeorm';
 import { DateUtils } from 'typeorm/util/DateUtils';
 import { Container } from 'typedi';
-import * as Db from '@/Db';
+import type { IWorkflowBase } from 'n8n-workflow';
 import config from '@/config';
 import { CREDENTIALS_REPORT } from '@/audit/constants';
-import type { WorkflowEntity } from '@db/entities/WorkflowEntity';
 import type { Risk } from '@/audit/types';
-import { ExecutionRepository } from '@db/repositories';
+import type { WorkflowEntity } from '@db/entities/WorkflowEntity';
+import {
+	CredentialsRepository,
+	ExecutionDataRepository,
+	ExecutionRepository,
+} from '@db/repositories';
 
 async function getAllCredsInUse(workflows: WorkflowEntity[]) {
 	const credsInAnyUse = new Set<string>();
@@ -34,36 +37,43 @@ async function getAllCredsInUse(workflows: WorkflowEntity[]) {
 }
 
 async function getAllExistingCreds() {
-	const credentials = await Db.collections.Credentials.find({ select: ['id', 'name'] });
+	const credentials = await Container.get(CredentialsRepository).find({ select: ['id', 'name'] });
 
 	return credentials.map(({ id, name }) => ({ kind: 'credential' as const, id, name }));
 }
 
-async function getExecutionsInPastDays(days: number) {
+async function getExecutedWorkflowsInPastDays(days: number): Promise<IWorkflowBase[]> {
 	const date = new Date();
 
 	date.setDate(date.getDate() - days);
 
-	const utcDate = DateUtils.mixedDateToUtcDatetimeString(date) as string;
+	const executionIds = await Container.get(ExecutionRepository)
+		.find({
+			select: ['id'],
+			where: {
+				startedAt: MoreThanOrEqual(DateUtils.mixedDateToUtcDatetimeString(date) as Date),
+			},
+		})
+		.then((executions) => executions.map(({ id }) => id));
 
-	return Container.get(ExecutionRepository).findMultipleExecutions(
-		{
+	return Container.get(ExecutionDataRepository)
+		.find({
+			select: ['workflowData'],
 			where: {
-				startedAt: MoreThanOrEqual(utcDate) as unknown as FindOperator<Date>,
+				executionId: In(executionIds),
 			},
-		},
-		{ includeData: true },
-	);
+		})
+		.then((executionData) => executionData.map(({ workflowData }) => workflowData));
 }
 
 /**
  * Return IDs of credentials in workflows executed in the past n days.
  */
 async function getCredsInRecentlyExecutedWorkflows(days: number) {
-	const recentExecutions = await getExecutionsInPastDays(days);
+	const executedWorkflows = await getExecutedWorkflowsInPastDays(days);
 
-	return recentExecutions.reduce<Set<string>>((acc, execution) => {
-		execution.workflowData?.nodes.forEach((node) => {
+	return executedWorkflows.reduce<Set<string>>((acc, { nodes }) => {
+		nodes.forEach((node) => {
 			if (node.credentials) {
 				Object.values(node.credentials).forEach((c) => {
 					if (c.id) acc.add(c.id);