serum-rails

Code scanner to prepare security audits

When you inquire about the cost of a security audit at makandra we will ask you to provide some metrics about your application, like the number of controller actions and many others.

This gem provides a serum-rails command you can use to scan your project and provide these metrics automatically. By sending us the output of the serum-rails command we can give you an recommendation for the time you should invest for a security audit.

Since all you send us are a few numbers, we don't need to look at your code for a first estimate. This saves us signing an NDA and giving us access to your repository before we even work together.

Installation

You can install serum-rails as a Ruby gem:

gem install serum-rails

Once you have installed the gem you should have a serum-rails command in your path.

Usage

Start serum-rails like this:

serum-rails PATH_TO_YOUR_RAILS_APPLICATION

serum-rails will scan the code of your application and output some code metric to the console.

Please e-mail the output to your security audit contact at makandra to continue the process.