Squashing Security Bugs with Rubocop by Omar You spot a subtle security bug during a code review and flag it, making sure it's fixed before it gets deployed. Taking this one step further you want to make sure others don't make same mistake. Short of reviewing every piece of code, what can you do? That's where Rubocop comes in. You can save time in code reviews by using it to enforce coding patterns and styles. As a security-minded engineer you might ask: could we use it to find security bugs? Turns out you can! This talk will cover how Betterment uses Rubocop to detect vulnerabilities and the thought process that went into this work.