FLOSS Weekly 522

Railroader is a security static analysis tool for applications that use Ruby on Rails. Railroader will examine custom code to look for potential problems, and warn about them. Railroader can’t find every vulnerability, but it’s a great tool to help find problems before they hurt anyone. It is a static analysis tool - that means it does not try to run the application users are analyzing. Railroader is an OSS fork of the Brakeman project, which has gone proprietary

Download or subscribe to this show at https://twit.tv/shows/floss-weekly

Here's what's coming up for FLOSS in the future.

Think your open source project should be on FLOSS Weekly? Email Randal at merlyn@stonehenge.com

Thanks to Lullabot's Jeff Robbins, web designer and musician, for our theme music.

Links

• Railroader
• Github railroader
• David A. Wheeler’s Personal Home Page
• best-practices-badge github
• Publicly Releasing Open Source Software Developed for the U.S. Government
• A Sample Security Assurance Case Pattern
• Core Infrastructure Initiative (CII) Best Practices Badge in 2019