pronto-brakeman

pronto-brakeman copied to clipboard

Confidence level

1

Hey, I was wondering if I am missing something. I would like to run brakeman with a higher minimum confidence level, otherwise the noise is too high. I saw that...

klyonrad

Being able to specify an `ignore_file` is nice, but first you need to be able to create and update one :)

magni-

I have a monorepo for which I am running `pronto` with `brakeman` runner. The Rails application is inside `apps/backend` subdirectory. It does not report any warnings (even though it should...

jmatraszek

Add toggle to control if Brakeman scans changed files, or all files

6

Thanks for writing Pronto! We've integrated it into our CI pipeline, but have noticed that some checks fail to pick up some Brakeman issues, since Brakeman is passed a list...

dgholz

https://github.com/presidentbeef/brakeman/issues/1267#issuecomment-427151504 Would it be possible to move to using `skip-files` [here]( https://github.com/prontolabs/pronto-brakeman/blob/d3de48397e9415d732c09618adacb99382648944/lib/pronto/brakeman.rb#L15) something like ```ruby files = ruby_patches.map do |patch| patch.new_file_full_path.relative_path_from(repo_path).to_s end unchanged_files = Dir["**/*.rb"] - files output = ::Brakeman.run(app_path:...

nikolai-b