Today, we’re excited to announce the release of a new analysis engine: Brakeman OSS.
Brakeman is a static analysis tool which checks Ruby on Rails applications for security vulnerabilities. We’re big Brakeman fans - and have been using it for years as part of our Ruby security analysis - so we’re especially glad to be able to offer it as part of our engines-based analysis.
To enable the Brakeman engine for your project, add the following to your
.codeclimate.yml configuration file:
engines: brakeman: enabled: true ratings: paths: - "**.rb"
If you have the CLI installed, you can enable the engine with the
$ brew update && brew upgrade codeclimate $ cd ~/my/awesome/app $ codeclimate engines:enable brakeman
Add it to your analysis today and ensure that your Rails application is protected against attacks!