Brakeman - Rails Security Scanner

Static analysis security scanner for Ruby on Rails

Brakeman Users

“When I work with Rails shops, the first thing I tell them to do is run Brakeman. It runs fast, gives very few false positives, and points to remediation information developers can understand.” - Matt Konda (Jemurai)

Here are a few of the companies using Brakeman:

Blackhawk Network Braintree Payments Carousel Apps Codacy Code Climate CodeDX Conviso DataCentred Envato GitHub Icicle Technologies Logical Reality Design Lumosity nVisium New Relic Semaphore PullReview ThreadFix Twitter Vinted The Winnower

MPower Payments
University of Washington Center for Commercialization

Additionally, use of Brakeman is recommended by:


To add your company or logo here, please open an issue or tweet @Brakeman.