Bundler security audit rake task

audit.rake

# run with `bundle:audit_and_notify`

require 'bundler/audit/task'
Bundler::Audit::Task.new

task default: 'bundle:audit'

namespace :bundle do
  desc 'Audit and notify about gem vulnerabilities'
  task audit_and_notify: :environment do
    output = `rake bundle:audit`

    unless $CHILD_STATUS.success?
      Notifier.notify_admin('Bundle vulnerabilities found', output).deliver
    end

    puts output
  end
end