Rubocop VS Brakeman

Parenthesis are mostly optional in Ruby, Seattle style takes it to an extreme where you omit any character not required for the code to run. https://github.com/rubocop-hq/rubocop/issues/4793

No, it's not?! The latest version is 1.28.2: https://rubygems.org/gems/rubocop

Running rubocop might give you a few tips regarding naming conventions and best practices

Every language that I’ve ever worked in has a linter written for it. JavaScript has ESLint; Python has Black, and Ruby has RuboCop. These linters do the simple job of making sure your code follows the prescribed set of style rules. A few linters like RuboCop also enforce good practices such as atomic functions and better variable names. Such hints are very often helpful in detecting and fixing bugs before they cause issues in production.

It's like rubocop problem: https://github.com/rubocop-hq/rubocop/issues/8091

If you're looking for static typing a dynamic language is going to be a poor fit. I find a place for both. I love Rust, but trying to write a tool that consumed a GraphQL API with was a brutal exercise in frustation. I'd say that goes for typing of JSON or YAML or whatever structured format in general. It's refreshing being able to just work with data in the form I already know it's in. Ruby can be an incredibly productive language to work with.

If you're looking for static analysis in general, please note that there are mature tools available. Rubocop¹ is probably the most popular and allows for linting and code formatting. Brakeman² is a vulnerability scanner for Rails. Sorbet³ is a static type checker.

The tooling is there if you want to try things out. But, if you want a statically typed language then that's a debate that's been going since the dawn of programming language design. I doubt it's going to get resolved in this thread.

¹ - https://github.com/rubocop/rubocop

² - https://brakemanscanner.org/

³ - https://sorbet.org/

Regularly audit your application's codebase to identify potential vulnerabilities. Tools such as Brakeman provide automated security scanning for Rails applications and can help identify injection vulnerabilities early.

Brakeman https://github.com/presidentbeef/brakeman Description: A static analysis security vulnerability scanner specifically designed for Ruby on Rails applications. Usage: Use Brakeman to scan your Rails codebase and identify potential security issues during development.

Brakeman - “Brakeman detects security vulnerabilities in Ruby on Rails applications via static analysis”

My team and I released Bearer a couple of weeks ago, a newer open and free alternative to Brakeman to check your code for security and privacy risks. In addition to Ruby/Rails, we also cover your JS/TS code, which allows you to use a single solution for your whole Rails application.

Brakeman is a static analysis security vulnerability scanner for Ruby on Rails applications. It finds potential security issues in Rails applications by examining the Ruby code. Brakeman helps find and fix security holes before deploying your Rails app.

brakeman is another useful Ruby gem that is a static analysis security vulnerability scanner for Ruby on Rails applications.

You might find brakeman interesting: https://brakemanscanner.org

It’s assumed that you already have a Rails app and use Brakeman to keep your app secure and Rspec to run your test cases.