Pronto
runner for Brakeman¶ ↑
Pronto
runner for Brakeman, security vulnerability scanner for RoR. What is Pronto?
Severity mapping¶ ↑
Brakeman Confidence is mapped to severity levels on the messages generated by Pronto
. High confidence maps to fatal, medium confidence maps to warning, and low confidence maps to info.
Options¶ ↑
Brakeman also includes some optional checks and by setting the following in your .pronto.yml
you can run every check included in the gem:
Run all checks¶ ↑
brakeman: run_all_checks: true
(This is the equivalent of running brakeman -A
on the command line.)
Ignore file¶ ↑
brakeman: ignore_file: '.brakeman'
(This is the equivalent of running brakeman -i IGNOREFILE
on the command line.)