Bundler-Audit

Language / Framework: Ruby
Checks: 235
Categories: Security
Bundler Audit Version: (updated to latest version at build time)

Bundler-Audit helps you find security vulnerabilities in your Ruby dependencies. Bundler-audit also offers patch-level verification for Bundler.

Enable the Plugin

To enable Bundler Audit analysis, add the following to your .codeclimate.yml configuration file:

plugins:
  bundler-audit:
    enabled: true

More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate

Configure the Plugin

There is no configuration available for this engine.

Understand the Plugin

Bundler-Audit cross references entries in your Gemfile.lock with the Ruby Advisory DB.