Bundler-Audit

Language / Framework: Ruby
Checks: 235
Categories: Security
Bundler-Audit helps you find security vulnerabilities in your Ruby dependencies. Bundler-audit also offers patch-level verification for Bundler.
Enable the Plugin
To enable Bundler Audit analysis, add the following to your .codeclimate.yml configuration file:
plugins:
bundler-audit:
enabled: true
More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate
Configure the Plugin
Specify path to Gemfile.lock
plugins:
bundler-audit:
enabled: true
config:
path: optional/path/to/Gemfile.lock
https://github.com/codeclimate/codeclimate-bundler-audit
Understand the Plugin
Bundler-Audit cross references entries in your Gemfile.lock
with the Ruby Advisory DB.
Updated over 2 years ago