Brakeman 1.3.0 Released
- From:
- Justin
- Date:
- 2012-02-09 @ 00:18
Thanks to everyone who reported problems and suggestions this time
around!
This release includes some new features, better performance on large
projects, and more detection criteria. Warnings reported may change
after upgrading.
Changes since 1.2.2:
* Add file paths to HTML report
* Add caching of filters
* Add `--skip-files` option
* Add support for `attr_protected`
* Add detection of `request.env` as user input
* Descriptions of checks in `-k` output
* Improved processing of named scopes
* Check for mass assignment in
`ActiveRecord::Associations::AssociationCollection#build`
* Better variable substitution processing
* Table output option for rescan reports
See
http://brakemanscanner.org/blog/2012/02/08/brakeman-1-dot-3-0-released/
for full details.