Brakeman v1.5.0

Version Release Notes from March 02, 2012 (about 12 years ago)

« Changelog History

Brakeman v1.5.0 Release Notes

Release Date: 2012-03-02 // about 12 years ago

- Add version check for SafeBuffer vulnerability
- Add check for select vulnerability in Rails 3
- select() is no longer considered safe in Rails 2
- Add check for skipping CSRF protection with a blacklist
- Add JSON report format
- Model#id should not be considered XSS
- Standardize methods to check for SQL injection
- Fix Rails 2 route parsing issue with nested routes

Awesome Ruby is part of the LibHunt network. Terms. Privacy Policy.