Skip to content

Deprecation of bundler-audit October 13, 2023#

On October 13th 2023 we deprecated the tool bundler-audit in favor of Trivy, a more complete and actively maintained tool for detecting vulnerabilities in Ruby gems and other languages, with a vulnerability database that's updated daily.

Removal of bundler-audit January 1, 2024#

On January 1st, 2024 we'll be removing bundler-audit from Codacy.

If you are using bundler-audit#

To continue monitoring your repositories for vulnerable Ruby gems, enable the Trivy tool in your organization coding standards (recommended) or on the code patterns page of each of the affected repositories.

For new repositories, Trivy will be active by default.

If you have any questions or need help, please contact

Share your feedback 📢

Did this page help you?

Thanks for the feedback! Is there anything else you'd like to tell us about this page?

We're sorry to hear that. Please let us know what we can improve:

Alternatively, you can create a more detailed issue on our GitHub repository.

Thanks for helping improve the Codacy documentation.

Edit this page on GitHub if you notice something wrong or missing.

If you have a question or need help please contact

Last modified October 16, 2023