From b5dfa4b25cc4889db9160cb671c1af3470d83b9d Mon Sep 17 00:00:00 2001
From: Jill Klang <jillian.emilie@gmail.com>
Date: Wed, 29 May 2024 10:50:23 -0400
Subject: [PATCH] Add brakeman for security analysis (#161)

---
 .github/workflows/reviewdog.yml | 16 ++++++++++++++++
 Gemfile                         |  1 +
 Gemfile.lock                    |  3 +++
 3 files changed, 20 insertions(+)
 create mode 100644 .github/workflows/reviewdog.yml

diff --git a/.github/workflows/reviewdog.yml b/.github/workflows/reviewdog.yml
new file mode 100644
index 0000000..8245dd1
--- /dev/null
+++ b/.github/workflows/reviewdog.yml
@@ -0,0 +1,16 @@
+name: Automated Code Reviews
+on: [pull_request]
+
+jobs:
+  brakeman:
+    name: Security Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v4
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@v1
+      - name: Brakeman
+        uses: reviewdog/action-brakeman@v2
+        with:
+          brakeman_version: gemfile
diff --git a/Gemfile b/Gemfile
index 201b7eb..6b32144 100644
--- a/Gemfile
+++ b/Gemfile
@@ -20,6 +20,7 @@ group :development do
   gem "spring-commands-rspec"
   gem "spring-watcher-listen", "~> 2.1.0"
   gem "web-console", ">= 3.3.0"
+  gem "brakeman"
 end
 
 group :development, :test do
diff --git a/Gemfile.lock b/Gemfile.lock
index a45f08c..bafeb68 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -66,6 +66,8 @@ GEM
     bindex (0.8.1)
     bootsnap (1.18.3)
       msgpack (~> 1.2)
+    brakeman (6.1.2)
+      racc
     builder (3.2.4)
     byebug (11.1.3)
     capybara (3.39.0)
@@ -287,6 +289,7 @@ PLATFORMS
 DEPENDENCIES
   awesome_print
   bootsnap (>= 1.1.0)
+  brakeman
   capybara-selenium
   coffee-rails (~> 5.0)
   dotenv-rails