[openstreetmap/openstreetmap-website] Add static code checks in Travis CI (#2229)

mmd notifications at github.com
Sun May 19 18:56:09 UTC 2019


This pull request adds Brakeman as Static Analysis Security Tool, as well as bundle-audit to check for vulnerable gems.

Documentation:

- Brakeman: https://brakemanscanner.org/docs/
- bundle-audit: https://www.rubydoc.info/gems/bundler-audit/frames

Some ideas taken from: https://rietta.com/blog/2017/10/03/automate-security-scans-with-continuous-integration/
You can view, comment on, or merge this pull request online at:

  https://github.com/openstreetmap/openstreetmap-website/pull/2229

-- Commit Summary --

  * Add static code checks in Travis CI

-- File Changes --

    M .travis.yml (4)
    M Gemfile (1)
    M Gemfile.lock (2)

-- Patch Links --

https://github.com/openstreetmap/openstreetmap-website/pull/2229.patch
https://github.com/openstreetmap/openstreetmap-website/pull/2229.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/2229
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20190519/4a911d2e/attachment-0001.html>


More information about the rails-dev mailing list