StackShareStackShare
Follow on
StackShare

Discover and share technology stacks from companies around the world.

Product

  • Stacks
  • Tools
  • Companies
  • Feed

Company

  • About
  • Blog
  • Contact

Legal

  • Privacy Policy
  • Terms of Service

© 2025 StackShare. All rights reserved.

API StatusChangelog
Brakeman
ByBrakemanBrakeman

Brakeman

#31in Code Review
Discussions1
Followers31
OverviewDiscussions1

What is Brakeman?

Free static analysis security tool for Ruby on Rails. Zero-setup security scans for Rails applications based on source code analysis.

Brakeman is a tool in the Code Review category of a tech stack.

Brakeman Pros & Cons

Pros of Brakeman

No pros listed yet.

Cons of Brakeman

No cons listed yet.

Brakeman Alternatives & Comparisons

What are some alternatives to Brakeman?

ESLint

ESLint

A pluggable and configurable linter tool for identifying and reporting on patterns in JavaScript. Maintain your code quality with ease.

Prettier

Prettier

Prettier is an opinionated code formatter. It enforces a consistent style by parsing your code and re-printing it with its own rules that take the maximum line length into account, wrapping code when necessary.

TSLint

TSLint

An extensible static analysis tool that checks TypeScript code for readability, maintainability, and functionality errors. It is widely supported across modern editors & build systems and can be customized with your own lint rules, configurations, and formatters.

SonarQube

SonarQube

SonarQube provides an overview of the overall health of your source code and even more importantly, it highlights issues found on new code. With a Quality Gate set on your project, you will simply fix the Leak and start mechanically improving.

RuboCop

RuboCop

RuboCop is a Ruby static code analyzer. Out of the box it will enforce many of the guidelines outlined in the community Ruby Style Guide.

Stylelint

Stylelint

A mighty, modern CSS linter that helps you enforce consistent conventions and avoid errors in your stylesheets.

Brakeman Integrations

ThreadFix are some of the popular tools that integrate with Brakeman. Here's a list of all 1 tools that integrate with Brakeman.

ThreadFix
ThreadFix

Try It

Visit Website

Adoption

On StackShare

Companies
23
BCSRBL+17
Developers
43
BKMMMJ+37

Brakeman Discussions

Discover why developers choose Brakeman. Read real-world technical decisions and stack choices from the StackShare community.

Jerome Dalbert
Jerome Dalbert

Principal Backend Software Engineer at StackShare

Mar 24, 2019

Needs adviceonGitHubGitHubCircleCICircleCICode ClimateCode Climate

The continuous integration process for our Rails backend app starts by opening a GitHub pull request. This triggers a CircleCI build and some Code Climate checks.

The CircleCI build is a workflow that runs the following jobs:

  • check for security vulnerabilities with @{Brakeman}|tool:6577|
  • check code quality with @{RuboCop}|tool:2643|
  • run @{RSpec}|tool:2539| tests in parallel with the knapsack gem, and output test coverage reports with the simplecov gem
  • upload test coverage to Code Climate

Code Climate checks the following:

  • code quality metrics like code complexity
  • test coverage minimum thresholds

The CircleCI jobs and Code Climate checks above have corresponding GitHub status checks.

Once all the mandatory GitHub checks pass and the code+functionality have been reviewed, developers can merge their pull request into our Git master branch. Code is then ready to deploy!

#ContinuousIntegration

0 views0
Comments