Awesome

Pronto runner for Brakeman

Pronto runner for Brakeman, security vulnerability scanner for RoR. What is Pronto?

Severity mapping

Brakeman Confidence is mapped to severity levels on the messages generated by Pronto. High confidence maps to fatal, medium confidence maps to warning, and low confidence maps to info.

Options

Brakeman also includes some optional checks and by setting the following in your .pronto.yml you can run every check included in the gem:

Run all checks

brakeman:
  run_all_checks: true

(This is the equivalent of running brakeman -A on the command line.)

Ignore file

brakeman:
  ignore_file: '.brakeman'

(This is the equivalent of running brakeman -i IGNOREFILE on the command line.)