diff --git a/Gemfile b/Gemfile
index 59a25a3db..e4f12a819 100644
--- a/Gemfile
+++ b/Gemfile
@@ -129,3 +129,5 @@ gem "sidekiq", "~> 7.2"
 
 gem "sidekiq-failures", "~> 1.0"
 gem "activejob-status", "~> 1.0"
+
+gem "brakeman", "~> 6.1"
diff --git a/Gemfile.lock b/Gemfile.lock
index e68adfe42..4d3f94a56 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -122,6 +122,8 @@ GEM
     bindex (0.8.1)
     bootsnap (1.18.3)
       msgpack (~> 1.2)
+    brakeman (6.1.2)
+      racc
     builder (3.2.4)
     byebug (11.1.3)
     childprocess (5.0.0)
@@ -556,6 +558,7 @@ DEPENDENCIES
   acts-as-taggable-on (~> 10.0)
   acts_as_favoritor (~> 6.0)
   bootsnap (>= 1.4.4)
+  brakeman (~> 6.1)
   byebug
   cocoon (~> 1.2)
   cssbundling-rails (~> 1.4)