Running @brakeman and bundler-audit are step 1 and 2 of securing my @rails projects. #security101