diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 7b8b406a64..da23280c72 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -15,7 +15,7 @@ variables:
   ARTIFACT_COMPRESSION_LEVEL: "fast"
   CACHE_COMPRESSION_LEVEL: "fast"
   SAST_EXCLUDED_ANALYZERS: "bandit"
-  SAST_EXCLUDED_PATHS: spec,test,tests,tmp,extern
+  SAST_EXCLUDED_PATHS: "extern"
 
 .Ubuntu_Image:
   tags:
diff --git a/.gitlab/sast-ruleset.toml b/.gitlab/sast-ruleset.toml
index fb111405fa..543ceb4ca7 100644
--- a/.gitlab/sast-ruleset.toml
+++ b/.gitlab/sast-ruleset.toml
@@ -69,3 +69,8 @@
 		[flawfinder.ruleset.identifier]
 			type = "flawfinder_func_name"
 			value = "printf"  # only false positives, sigh
+	[[flawfinder.ruleset]]
+		disable = true
+		[flawfinder.ruleset.identifier]
+			type = "flawfinder_func_name"
+			value = "system"  # only false positives, sigh