brakeman   27

GitHub - WriteCodeEveryday/darnbrokenrails: An attempt at a cybersecurity / code quality teaching tool for Rails.
Project Goals and Objectives

This repository plus the accompanying documentation can be used for developers wanting to improve their code from a security / quality perspective. The data contained within should not need a 'Computer Science' degree in order to be understood. Your developers and technical management should be able to comprehend the 'nerd talk' within this project without having any issues.

The following goals are the unofficial goals of the project. More goals may be added by contributors.

Violates as many bundler-audit CVEs as possible.
Violates every warning under brakeman whenever possible.
Violates as many suggestions under rails_best_practices as possible.

A tutorial section has been created in the wiki to show how to download this repository, install the tooling and execute the tools and each example within the code should have documentation linking back to the original source so the developers may use the available free tools to further their knowledge and write better Rails software. There is no reason to have insecure / non-functional software in the 21st century, at any level of any company. Any sort of software tools used within this project should be free, open source or have a trial, commercial software will be considered based on price.


Inspired by the Damn Vulnerable Linux project, original idea by Esteban Garcia so he could teach himself security and proper coding as he taught himself Rails, initial implementation by Lazaro Herrera, contributions by you, maybe?
Security  RubyOnRails  brakeman 
june 2017 by cnk
brakeman - A static analysis security vulnerability scanner for Ruby on Rails applications
security  ruby  rails  analysis  tools  static  gem  gems  brakeman  vulnerabilities  scanner  github 
february 2015 by Sophus12345
Brakeman - Rails Security Scanner
Brakeman is a static analysis security vulnerability scanner for Ruby on Rails applications.
security  ruby  rails  analysis  tools  static  gem  gems  brakeman  vulnerabilities  scanner 
february 2015 by Sophus12345
Essential Tools for Starting a Rails App in 2013 | Pete Keen
"Over the past few years I've written a number of Rails applications. It's become my default "scratch an itch" tool for when I need to build an app quickly to do a task. Even though Rails is mostly batteries-included, there are a few tools that make writing new applications so much easier. This is my list of tools that I use for pretty much every new Rails project."
code  development  rails  ruby  tools  dotenv  devise  brakeman  security 
september 2013 by sunpig

related tags

analysis  breaks  code  dawnscanner  development  devise  dotenv  gem  gems  github  hacks  ignore  issues  jenkins  pipeline  plugin  presentations  programming  rails  railsbp  ror  ruby  rubyonrails  scanner  scanning  security  sinatra  soap  srm  static  tool  tools  toread  utils  virtual  vmware  vro  vulnerabilities  vulnerability  あとで試す 

Copy this bookmark: