search

coala / coala-bears

Bears for coala
https://coala.io/
GNU Affero General Public License v3.0
295 stars 580 forks source link

Ruby web application security scanner bear #435

Open arafsheikh opened 8 years ago

arafsheikh commented 8 years ago

https://github.com/thesp0nge/dawnscanner

From Gitter:

Lasse Schuirmann @sils1297 
I guess dawn searches for a certain file in the directory
so the bear could search that file in the files dict and give it that directory and then filter analysis for those files only?

Sheikh Araf @arafsheikh 
dawn uses Gemfile.lock file to autodetect the MVC framework
but you can specify the framework too, so that's not a problem I guess
gitmate-bot commented 8 years ago

Thanks for reporting this issue!

Your aid is required, fellow coalaian. Help us triage and solving this issue!

CC @sils1297, @AbdealiJK

drjod commented 8 years ago

Hi, we gave up here. It's more difficult than we thought. The main difficulty seems to be that the drawn scanner works with directories and the lint bear, we had in mind, works with files. It looks reasonable to change the level from low to intermediate difficulty.

sils commented 8 years ago

@drjod thanks for trying and the info! Let us know if you want to pick something else.