Brakeman - Rails Security Scanner

Static analysis security scanner for Ruby on Rails

Installing the Brakeman Plugin

Note: This plugin does not contain Brakeman, it only imports and aggregates Brakeman results.

Installion Through Plugin Manager

Navigate to Manage Jenkins -> Manage Plugins -> Available.

Check the box next to “Brakeman” and click the “Install” button at the bottom of the page.

When installation is complete, restart Jenkins.

Manual Installion

Install the Static Analysis Core Plugin

First, install the Static Analysis Core Plugin.

To do so, navigate through Jenkins to the list of available plugins: Manage Jenkins -> Manage Plugins -> Available.

Check the box next to “Static Analysis Utilities” and click “Install”.

Download Brakeman Plugin

You can download the Brakeman plugin here or from the “Downloads” link here.

Install the Brakeman Plugin

In Jenkins, go to Manage Jenkins -> Manage Plugins -> Advanced (or just go to the “Advanced” tab if you are already on the plugins page). Click “Choose File” under “Upload Plugin” and choose the brakeman.hpi file saved from above.

Then click “Upload”.

You may need to restart Jenkins after this.

Setup

See how to set up a job to use the plugin.