Name: Security and Static Code Analyzers
Uploaded: 2023-10-04 07:45:29 UTC
Duration: 8 min 12 s
Description: Whether you're preparing for a third-party security scan or already doing peer code reviews, you should always run brakeman scanner on your application to identify potential security vulnerabilities.

Security and Static Code Analyzers

Episode #62 by

David Kimura

Jan 8, 2017

Previous (#61) Episode Next (#63)

Summary

Whether you're preparing for a third-party security scan or already doing peer code reviews, you should always run brakeman scanner on your application to identify potential security vulnerabilities.
rails security 8:12

Mark as Watched Watch Later

Show Notes
Comments 1

Resources

Brakeman Scanner - http://brakemanscanner.org/
Brakeman Gem - https://github.com/presidentbeef/brakeman
Guard Gem - https://github.com/guard/guard
Guard-Brakeman Gem - https://github.com/guard/guard-brakeman

Summary

# Terminal
gem install brakeman
brakeman -o brakeman.html

Open the brakeman.html within your browser for an interactive report

# Terminal
gem install guard guard-brakeman

# Guardfile
guard 'brakeman', run_on_start: true, quiet: true do
  watch(%r{^app/.+\.(erb|haml|rhtml|rb)$})
  watch(%r{^config/.+\.rb$})
  watch(%r{^lib/.+\.rb$})
  watch('Gemfile')
end

Learning Paths

Video Logs new

Blog

Merchandise

Forums new

Summary

Resources

Summary