Brakeman v5.0.0 Release Notes

Release Date: 2021-01-26 // about 3 years ago
    • Ignore uuid as a safe attribute
    • Collapse __send__ calls
    • Ignore Tempfile#path in shell commands
    • Ignore development environment
    • โš  Revamp CSV report to a CSV list of warnings
    • ๐Ÿ”ง Set Rails configuration defaults based on load_defaults version
    • โž• Add check for (more) unsafe method reflection
    • ๐Ÿš… Suggest using --force if no Rails application is detected
    • โž• Add Sonarqube report format (Adam England)
    • โž• Add check for potential HTTP verb confusion
    • โž• Add --[no-]skip-vendor option
    • ๐Ÿ’Ž Scan (almost) all Ruby files in project