dawnscanner
Dawnscanner is a source code scanner designed to review your ruby code for security issues.Dawnscanner is able to scan plain ruby scripts (e.g. command line applications) but all its features are unleashed when dealing with web applications source code. dawnscanner is able to scan major MVC (Model View Controller) frameworks.
Details
Category: Static Code Analysis
Publisher: trickest
Created Date: 6/23/2021
Container: quay.io/trickest/dawnscanner:2.0.0.rc4
Source URL: https://github.com/thesp0nge/dawnscanner
Parameters
target-dir
folder
requiredCommand:
dependencies
boolean
Command:
-d - Force dawn to scan only for vulnerabilities affecting dependencies in Gemfile.lockdisable-code-style
boolean
Command:
--disable-code-style - Disable all code style checksdisable-owasp-top-10
boolean
Command:
--disable-owasp-top-10 - Disable all Owasp Top 10 checksdisable-cve-bulletins
boolean
Command:
--disable-cve-bulletins - Disable all CVE security checkdisable-code-quality-checks
boolean
Command:
--disable-code-quality - Disable all code quality checksdisable-owasp-ror-cheatsheet
boolean
Command:
--disable-owasp-ror-cheatsheet - Disable all Owasp Ruby on Rails cheatsheet checks