A static analysis security vulnerability scanner for Ruby on Rails applications
if
conditions (#1683)nil
when joining values (Dan Buettner)ruby_parser
for Ruby 3.1 support (Merek Skubela)ruby_parser
(Ryan Davis)::Haml::AttributeBuilder.build
nil
line numbersIgnoreConfig
's use of Brakeman::FilePath
(Fixes bugs with -I
and also relative paths for -i
.)
--interactive
menu (Elia Schito)--sql-safe-methods
option (Esty Scheiner)sanitize_sql_like
in SQL (#1571)Open3.capture
(Richard Fitzgerald)cookie?
/param?
methods (Keenan Brock)--[no-]skip-vendor
optionuuid
as a safe attributeTempfile#path
in shell commands__send__
callsload_defaults
version--force
if no Rails application is detected