Add and run brakeman (epic) #145

hortongn · 2022-03-03T18:50:20Z

Documentation: https://github.com/presidentbeef/brakeman

Add the brakeman gem to the Gemfile, bundle install, and then run bundle exec brakeman -q -w 2 to find any security vulnerabilities. Create a new issue for each vulnerability found.

Verify previously found Brakeman vulnerabilities:

After all vulnerabilities have been found, run Brakeman automatically in CircleCI.
Example: https://github.com/uclibs/treatment_database/blob/qa/.circleci/config.yml#L86-L89

Add brakeman and bundler-audit to CI #155

This can be multiple pull requests.

The text was updated successfully, but these errors were encountered:

hortongn assigned bsp3ars Mar 3, 2022

hortongn added this to the Next deploy milestone Apr 21, 2022

hortongn unassigned bsp3ars Nov 2, 2022

Janell-Huyck self-assigned this Sep 6, 2023

hortongn changed the title ~~Add and run brakeman~~ Add and run brakeman (epic) Sep 6, 2023

Janell-Huyck mentioned this issue Sep 6, 2023

added brakeman gem ~> 6.0. Ran bundle install and bundle update #175

Merged

hortongn added the Security label Sep 6, 2023

hortongn closed this as completed in #175 Sep 8, 2023

Janell-Huyck added dependencies Pull requests that update a dependency file breaking breaking or major change labels Oct 12, 2023

hortongn removed this from the Next deploy milestone Apr 23, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add and run brakeman (epic) #145

Add and run brakeman (epic) #145

hortongn commented Mar 3, 2022 •

edited

Loading

Add and run brakeman (epic) #145

Add and run brakeman (epic) #145

Comments

hortongn commented Mar 3, 2022 • edited Loading

hortongn commented Mar 3, 2022 •

edited

Loading