ruby-auditruby-audit help us to check that there is now issue on the ruby and rubygems versions used in the project. This binary is excuted in our CI pipelines. And also executed every days to checks projets where we are not currently working.
bundler-auditbundler-audit works as ruby-audit but it checks the dependencies we use. We also execute it on CI and daily.
bundler-leakbundler-leak works as ruby-audit but it hecks for memory leaks of gems in Gemfile.lock. We also execute it on CI and daily.
brakemanbrakeman is a static analysis security vulnerability scanner for Ruby on Rails applications.