github presidentbeef/brakeman v0.6.0
0.6.0

latest releases: v6.1.2.1, v6.1.2, v6.1.1...
10 years ago
  • Tests are in place and fully functional
  • Hide errors by default in HTML output
  • Warn if routes.rb cannot be found
  • Narrow methods assumed to be file access
  • Increase confidence for methods known to not escape output
  • Fixes to output processing for Erubis
  • Fixes for Rails 3 XSS checks
  • Fixes to line numbers with Erubis
  • Fixes to escaped output scanning
  • Update CSRF CVE-2011-0447 message to be less assertive

Don't miss a new brakeman release

NewReleases is sending notifications on new releases.