What is Gemnasium?
Gemnasium is an automated service for monitoring Ruby gems and alerting developers about vulnerabilities and outdated dependencies in Ruby on Rails applications. It integrates with GitHub and scans gem dependencies in Rails projects for security issues, license compliance, and outdated gems.
Some key features of Gemnasium include:
- Security monitoring - Gemnasium checks gems used in your project against known security advisories and immediately alerts you when a vulnerability is found.
- License compliance checks - It scans gem licenses and alerts you if any gems have licenses that could conflict with your project's licensing.
- Outdated dependency checks - Gemnasium alerts you if any of your gems are outdated so you can easily update to the latest versions.
- GitHub integration - It connects with your GitHub repositories for easy and automated scanning whenever you push code.
- Customizable alerts and notifications - Receive alerts via email, Slack, HipChat, Jira, webhook based on your preferences.
Overall, Gemnasium makes it simple for Ruby developers to get notified about and fix security, licensing, and dependency version issues in their Rails applications before they become problems. It's a useful automated service for any Ruby on Rails project using gems.