Update brakeman rules [RUN AS-IF-FOSS]
What does this MR do?
Updates our detection rules for running the SAST brakeman analyzer.
Now that brakeman supports scanning most any Ruby file, we don't need to limit to Ruby on Rails projects. We want to run the brakeman job if a repository has a Gemfile or any *.rb file.
Sample MR for project that has no Gemfile, just *.rb files - pipeline
Sample MR for a Rails project with a Gemfile - pipeline
Related Issue
Screenshots (strongly suggested)
Does this MR meet the acceptance criteria?
Conformity
-
Changelog entry - [-] Documentation (if required)
-
Code review guidelines -
Merge request performance guidelines -
Style guides - [-] Database guides
- [-] Separation of EE specific content
Availability and Testing
-
Review and add/update tests for this feature/bug. Consider all test levels. See the Test Planning Process. - [-] Tested in all supported browsers
- [-] Informed Infrastructure department of a default or new setting change, if applicable per definition of done
Edited by Mayra Cabrera