Brakeman Now Available on the Code Climate Platform

Today, we’re excited to announce the release of a new analysis engine: Brakeman OSS.

Brakeman is a static analysis tool which checks Ruby on Rails applications for security vulnerabilities. We’re big Brakeman fans - and have been using it for years as part of our Ruby security analysis - so we’re especially glad to be able to offer it as part of our engines-based analysis.



To enable the Brakeman engine for your project, add the following to your .codeclimate.yml configuration file: ​

    engines:
        brakeman:
            enabled: true
    ratings:
        paths:
        - "**.rb"

If you have the CLI installed, you can enable the engine with the engines:enable command: ​

    $ brew update && brew upgrade codeclimate
    $ cd ~/my/awesome/app
    $ codeclimate engines:enable brakeman

Add it to your analysis today and ensure that your Rails application is protected against attacks!