diff --git a/.whitesource b/.whitesource
new file mode 100644
index 0000000000..04109aad18
--- /dev/null
+++ b/.whitesource
@@ -0,0 +1,45 @@
+{
+  "scanSettings": {
+    "configMode": "AUTO",
+    "configExternalURL": "",
+    "projectToken": "",
+    "baseBranches": []
+  },
+  "scanSettingsSAST": {
+    "enableScan": true,
+    "scanPullRequests": true,
+    "incrementalScan": true,
+    "baseBranches": [],
+    "snippetSize": 10
+  },
+  "checkRunSettings": {
+    "vulnerableCheckRunConclusionLevel": "failure",
+    "displayMode": "diff",
+    "useMendCheckNames": true
+  },
+  "checkRunSettingsSAST": {
+    "checkRunConclusionLevel": "failure",
+    "severityThreshold": "high"
+  },
+  "issueSettings": {
+    "minSeverityLevel": "LOW",
+    "issueType": "DEPENDENCY"
+  },
+  "issueSettingsSAST": {
+    "minSeverityLevel": "high",
+    "issueType": "repo"
+  },
+  "remediateSettings": {
+    "workflowRules": {
+      "enabled": true
+    }
+  },
+   "imageSettings":{
+       "imageTracing":{
+           "enableImageTracingPR": false,
+           "addRepositoryCoordinate": false,
+           "addDockerfilePath": false,
+           "addMendIdentifier": false
+       }
+   }
+}
\ No newline at end of file
diff --git a/Gemfile b/Gemfile
index da9c873bff..904432b23a 100644
--- a/Gemfile
+++ b/Gemfile
@@ -4,6 +4,11 @@ gem 'rake'
 gem 'faraday', '~> 2.0'
 gem 'kwalify', '~> 0.1'
 gem 'rspec',   '~> 3.0'
+gem 'devise', '4.6.2'
+gem 'rails', '5.2.3'        # CVE-2020-8163, CVE-2020-8164
+gem 'rack', '2.0.6'         # CVE-2018-16471, CVE-2018-16470
+gem 'nokogiri', '1.8.0'     # CVE-2017-18258
+
 
 group :development do
   gem 'pry'