Two days ago we launched an experiment called Facets. It’s a free
Gemfile.lock scanning tool that reveals CVE vulnerabilities in gems. It uses Hakiri DB and technologies in the background.
Facets turned out to be quite a success: a lot of upvotes on Reddit and a position in the featured section of Ruby Weekly. More importantly, people scanned their gemfiles more than 1000 times. I think it’s really great.
My goal with Hakiri is to make security monitoring simple and effective. I think Facets proves that it’s possible and that people are generally interested in making their products more secure.
So, what’s next? I think it would be interesting to analyze all the data that we received from multiple gemfile scans and make some sense out of it. Expect a report in this blog with some cool stats in the next couple of weeks.
Thanks for using Facets!