ยซ Changelog History


Brakeman v4.4.0 Release Notes

Release Date: 2019-01-17 // over 5 years ago
    • โž• Add check for CVE-2018-3760
    • โž• Add --enable option to enable optional checks
    • โž• Add Dockerfile to run Brakeman inside Docker (Ryan Kemper)
    • ๐Ÿ– Handle empty secrets.yml files (Naoki Kimura)
    • โš  Ignore Tempfiles in FileAccess warnings (Christina Koller)
    • โš  Avoid warning about command injection when String#shellescape and Shellwords.shelljoin are used (George Ogata)
    • Treat if not like unless (#1225)
    • ๐Ÿ›  Fix Rails 4 configuration handling
    • 0๏ธโƒฃ Set default encoding to UTF-8
    • ๐Ÿ‘Œ Support reading gem versions from gemspecs
    • ๐Ÿ‘Œ Support gem versions which are just major.minor (e.g. 3.0)
    • Correctly set rel="noreferrer" in HTML reports
    • ๐Ÿ›  Fix thread-safety issue in CallIndex
    • ๐Ÿ›  Fix trim mode for ERb templates in old Rails versions
    • Avoid nil errors when concatenating arrays
    • โž• Add rendered template information to render paths
    • Trim some unnecessary files from bundled gems
    • ๐Ÿ›  Deadcode and typo fixes found via Coverity
    • โš  Complete overhaul of warning message construction
    • โšก๏ธ Update to Slim 4.0.1 (Jake Peterson)
    • โšก๏ธ Update to RubyParser 3.12.0
    • โšก๏ธ Updated license