Just a small release with some bug fixes, fewer false positives, a new check, and initial support for Rails engines. For those integrating Brakeman with other tools, the new check means a new warning category and two new warning codes.
Oh, also the highline dependency has been bumped to 1.6.20 so `brakeman -I` will work with JRuby. Changes since 2.2.0: * Support scanning Rails engines (Geoffrey Hichborn) * Ignore redirects to models using `friendly_id` (AJ Ostrow) * Add check for detailed exceptions in production * Use Rails version from Gemfile if it is available * Only add routes with actual names * Reduce command injection false positives Please see the release post for full details: http://brakemanscanner.org/blog/2013/10/28/brakeman-2-dot-2-0-released/