diff --git a/.travis.yml b/.travis.yml
index 30a831b6..6d8cb584 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -18,4 +18,4 @@ before_script:
   - nvm use stable
   - (cd app/assets/javascripts && npm install)
 script:
-  - bundle exec rspec && (cd app/assets/javascripts && npm test)
+  - bundle exec rspec && (cd app/assets/javascripts && npm test) && brakeman -q -z
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 6fcb8bb9..7b2a48b2 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -3,7 +3,7 @@ class ApplicationController < ActionController::Base
   include Pundit
   include PunditExtra
   rescue_from Pundit::NotAuthorizedError, with: :handle_unauthorized
-  protect_from_forgery, with: :exception
+  protect_from_forgery(with: :exception)
 
   before_action :get_invite_link
   after_action :allow_embedding