Changes since 5.0.0:
Has it really been three months since Brakeman 5.0? Yikes!
Here’s a small update with some bugfixes before we move on to 5.1.
Support Smart Text in Slim Templates
In order to support “Smart Text” in Slim templates,
Brakeman will load slim/smart
if slim/smart
is mentioned in the Gemfile
.
(changes)
More Line Numbers
Setting nil
value for the line number of a Sexp raises an exception.
This is usually from creating a Sexp without a line number in the first place.
More instances of this have been fixed in this release.
(changes)
Always Ignore slice/only for Mass Assignment
If slice
or only
are called for arguments to mass assignment (e.g. User.new(some_hash.slice(:name, :email))
),
Brakeman will not warn about mass assignment.
These have been ignored for a while, but a logic error caused Brakeman to sometimes still warn about them.
(changes)
Convert Splats to Arguments
In really obvious cases like
some_call(*[a, b, c])
Brakeman will convert the arguments to
some_call(a, b, c)
(changes)
Checksums
The SHA256 sums for this release are:
Reporting Issues
Thank you to everyone who reported bugs and contributed to this release!
Please report any issues with this release. Take a look at this guide to reporting Brakeman problems.
Hang out on GitHub for questions and discussion.