- Scan (almost) all Ruby files in project
- Revamp CSV report to a CSV list of warnings
- Add Sonarqube report format (Adam England)
- Add check for (more) unsafe method reflection (#1488, #1507, and #1508)
- Add check for potential HTTP verb confusion (#1432)
- Add
--[no-]skip-vendor
option - Ignore
uuid
as a safe attribute - Ignore
Tempfile#path
in shell commands - Ignore development environment
- Collapse
__send__
calls - Set Rails configuration defaults based on
load_defaults
version - Update Ruby requirement to version 2.4.0
- Suggest using
--force
if no Rails application is detected