Language / Framework: Ruby/Rails
Brakeman version 4.1.1
Brakeman OSS is a static analysis tool which checks Ruby on Rails applications for security vulnerabilities.
To enable Brakeman analysis, add the following to your .codeclimate.yml configuration file:
plugins brakeman enabledtrue
More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate
The Brakeman engine supports Brakeman configuration files (and ignore files) as described in the Brakeman documentation.
Coming soon! Check Brakeman's changelog for the availability of this new feature.
If your application exists in a sub-directory, you can specify the sub-directory as an "app_path" in your config block. For example, if your rails app lives at "app/our_repo/", you would specify the following in your .codeclimate.yml:
plugins brakeman enabledtrue config app_pathapp/our_repo
Consult the official Brakeman documentation for more information about Brakeman analysis.