Add bundler-audit and ruby_audit gems in :audit group

NeatNerdPrime · NeatNerdPrime · commit 3f3dbf9998ec · 2026-02-21T21:48:49.000+01:00
Introduces security auditing tooling to scan gem dependencies and Ruby
runtime for known CVEs.
diff --git a/Gemfile b/Gemfile
@@ -41,6 +41,11 @@ group(:release, optional: true) do
   gem 'github_changelog_generator', '~> 1.16.4', require: false
 end
 
+group(:audit) do
+  gem 'bundler-audit', '~> 0.9', require: false
+  gem 'ruby_audit', '~> 2.3', require: false
+end
+
 group(:packaging) do
   gem 'json'
   gem 'packaging', '~> 0.105'
