Pronto runner for Brakeman, security vulnerability scanner for RoR
Pronto runner for Brakeman, security vulnerability scanner for RoR. What is Pronto?
Brakeman Confidence is mapped to severity levels on the
messages generated by Pronto. High confidence maps to fatal, medium confidence maps to warning, and low confidence maps
to info.
Brakeman also includes some optional checks and by setting the following in your .pronto.yml you can run every check included in the gem:
brakeman:run_all_checks: true
(This is the equivalent of running brakeman -A on the command line.)
brakeman:ignore_file: '.brakeman'
(This is the equivalent of running brakeman -i IGNOREFILE on the command line.)