#62 Security and Static Code Analyzers
Summary
Whether you're preparing for a third-party security scan or already doing peer code reviews, you should always run brakeman scanner on your application to identify potential security vulnerabilities.rails security 8:12
1-8-2017
Resources
Brakeman Scanner - http://brakemanscanner.org/
Brakeman Gem - https://github.com/presidentbeef/brakeman
Guard Gem - https://github.com/guard/guard
Guard-Brakeman Gem - https://github.com/guard/guard-brakeman
Summary
Terminalgem install brakeman
brakeman -o brakeman.html
Open the brakeman.html within your browser for an interactive report
Terminalgem install guard guard-brakeman
Guardfileguard 'brakeman', run_on_start: true, quiet: true do
watch(%r{^app/.+\.(erb|haml|rhtml|rb)$})
watch(%r{^config/.+\.rb$})
watch(%r{^lib/.+\.rb$})
watch('Gemfile')
end
Great episode thank you