March 07, 2012

Brakeman is an open source vulnerability scanner specifically designed for Ruby on Rails applications. It statically analyses Rails application code to find security issues at any stage of development.

Following this weekends Github hacking fiasco we’ve started running brakeman as part of our builds at work. Turned up some interesting things thus far - highly recommended!!!

There’s also a Jenkins plugin available to get nice graphs showing trends over time on your build pages - so go set that up too if you use Jenkins.