-
Notifications
You must be signed in to change notification settings - Fork 527
Brakeman
redsummernight edited this page Feb 8, 2025
·
3 revisions
We use Brakeman on GitHub Actions to alert us to security vulnerabilities in pull requests. You can use Brakeman locally to preview and action the results of this scan.
GitHub Actions' code scanning does not follow Brakeman's `.ignore` file. GitHub supports SARIF, but not the suppressed annotations output by Brakeman.
To ignore warnings (e.g. known safe methods that can be skipped by XSS checks), you can update Brakeman's options in config/brakeman.yml.
If you have any questions regarding code development, please don't hesitate to send an email to [email protected] and we will try to get back to you as soon as possible!
- Home
- Set Up Instructions
- Docker (All platforms)
- Gitpod (Cloud-based development)
- Linux
- OS X
- Creating Development Data
- Writing and Tracking Code
- Automated Testing
- Architecture
-
Getting Started Guide
- Getting Set Up
- Your First Pull Request
- More About Git
- Jira