Merge branch 'brakeman' into 'master'

Add Brakeman - Static analysis security scanner for Ruby on Rails See merge request !1616
author: Dmitriy Zaporozhets <dzaporozhets@gitlab.com> 2015-03-03 05:57:47 +0000
committer: Dmitriy Zaporozhets <dzaporozhets@gitlab.com> 2015-03-03 05:57:47 +0000
commit: d874c821b4562457442b62e204d6b8796ceb560e (patch)
tree: 31a3127c7eab3762d2070d88a1ba3ce019f96ba4 /lib
parent: 704d21f517f393b18c634f26ec58cc836cd0d6f4 (diff)
parent: f850cff4174bfe99a6f2ef0da365bf002990ad92 (diff)
download: gitlab-ce-d874c821b4562457442b62e204d6b8796ceb560e.tar.gz
2 files changed, 10 insertions, 1 deletions
diff --git a/lib/tasks/brakeman.rake b/lib/tasks/brakeman.rake
new file mode 100644
index 00000000000..abcb5f0ae46
--- /dev/null
+++ b/lib/tasks/brakeman.rake
@@ -0,0 +1,9 @@
+desc 'Security check via brakeman'
+task :brakeman do
+  if system("brakeman --skip-files lib/backup/repository.rb -w3 -z")
+    exit 0
+  else
+    puts 'Security check failed'
+    exit 1
+  end
+end
diff --git a/lib/tasks/test.rake b/lib/tasks/test.rake
index 3ea9290a814..a39d9649876 100644
--- a/lib/tasks/test.rake
+++ b/lib/tasks/test.rake
@@ -9,5 +9,5 @@ unless Rails.env.production?
   require 'coveralls/rake/task'
   Coveralls::RakeTask.new
   desc "GITLAB | Run all tests on CI with simplecov"
-  task :test_ci => [:rubocop, :spinach, :spec, 'coveralls:push']
+  task :test_ci => [:rubocop, :brakeman, 'jasmine:ci', :spinach, :spec, 'coveralls:push']
 end
author	Dmitriy Zaporozhets <dzaporozhets@gitlab.com>	2015-03-03 05:57:47 +0000
committer	Dmitriy Zaporozhets <dzaporozhets@gitlab.com>	2015-03-03 05:57:47 +0000
commit	d874c821b4562457442b62e204d6b8796ceb560e (patch)
tree	31a3127c7eab3762d2070d88a1ba3ce019f96ba4 /lib
parent	704d21f517f393b18c634f26ec58cc836cd0d6f4 (diff)
parent	f850cff4174bfe99a6f2ef0da365bf002990ad92 (diff)
download	gitlab-ce-d874c821b4562457442b62e204d6b8796ceb560e.tar.gz