Add Ruby and Rails EOL warnings to brakeman ignore list
In preparing to add Brakeman and Bundler-audit to the CI list, we need these to be running cleanly.
The versions of Ruby (2.7.5) and Rails (5.2.4.6) that we currently have have passed EOL and are triggering Brakeman warnings. Since we are going to be updating Ruby and Rails in tandem with Hyrax on this Scholar sprint, we decided to add these warnings to the Brakeman ignore list so that we could include Brakeman in our CI.
To run Brakeman: bundle exec brakeman
To get the Brakeman report used to generate these "fingerprints" used to ignore the warnings: brakeman -o report.json
refs #997
Add Ruby and Rails EOL warnings to brakeman ignore list
In preparing to add Brakeman and Bundler-audit to the CI list, we need these to be running cleanly.
The versions of Ruby (2.7.5) and Rails (5.2.4.6) that we currently have have passed EOL and are triggering Brakeman warnings. Since we are going to be updating Ruby and Rails in tandem with Hyrax on this Scholar sprint, we decided to add these warnings to the Brakeman ignore list so that we could include Brakeman in our CI.
To run Brakeman:
bundle exec brakeman
To get the Brakeman report used to generate these "fingerprints" used to ignore the warnings:brakeman -o report.json