Language / Framework: Ruby
Bundler-Audit helps you find security vulnerabilities in your Ruby dependencies. Bundler-audit also offers patch-level verification for Bundler.
To enable Bundler Audit analysis, add the following to your .codeclimate.yml configuration file:
plugins: bundler-audit: enabled: true
More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate
Specify path to Gemfile.lock
plugins: bundler-audit: enabled: true config: path: optional/path/to/Gemfile.lock
Bundler-Audit cross references entries in your
Gemfile.lock with the Ruby Advisory DB.
Updated about a year ago