lib/brakeman/options.rb in brakeman-1.3.0 vs lib/brakeman/options.rb in brakeman-1.4.0
- old
+ new
@@ -82,9 +82,14 @@
opts.on "-s", "--safe-methods meth1,meth2,etc", Array, "Consider the specified methods safe" do |methods|
options[:safe_methods] ||= Set.new
options[:safe_methods].merge methods.map {|e| e.to_sym }
end
+ opts.on "--url-safe-methods method1,method2,etc", Array, "Do not warn of XSS if the link_to href parameter is wrapped in a safe method" do |methods|
+ options[:url_safe_methods] ||= Set.new
+ options[:url_safe_methods].merge methods.map {|e| e.to_sym }
+ end
+
opts.on "--skip-files file1,file2,etc", Array, "Skip processing of these files" do |files|
options[:skip_files] ||= Set.new
options[:skip_files].merge files.map {|f| f.to_sym }
end