diff --git a/README.md b/README.md
index b5249cd..2186bc2 100644
--- a/README.md
+++ b/README.md
@@ -11,3 +11,14 @@ Pronto runner for [Brakeman](https://github.com/presidentbeef/brakeman), securit
 Brakeman [Confidence](https://github.com/presidentbeef/brakeman#confidence-levels) is mapped to severity levels on the
 messages generated by Pronto. High confidence maps to fatal, medium confidence maps to warning, and low confidence maps
 to info.
+
+## Run all checks
+
+Brakeman also includes some optional checks and by setting the following in your `.pronto.yml` you can run every check included in the gem:
+
+```yaml
+brakeman:
+  run_all_checks: true
+```
+
+(This is the equivalent of running `brakeman -A` on the command line.)
diff --git a/lib/pronto/brakeman.rb b/lib/pronto/brakeman.rb
index 1234bec..f31c004 100644
--- a/lib/pronto/brakeman.rb
+++ b/lib/pronto/brakeman.rb
@@ -4,23 +4,25 @@
 module Pronto
   class Brakeman < Runner
     def run
-      files = ruby_patches.map do |patch|
+      patches = ruby_patches | erb_patches
+      files = patches.map do |patch|
         patch.new_file_full_path.relative_path_from(repo_path).to_s
-      end
+      end.sort
 
       return [] unless files.any?
 
       output = ::Brakeman.run(app_path: repo_path,
                               output_formats: [:to_s],
-                              only_files: files)
-      messages_for(ruby_patches, output).compact
+                              only_files: files,
+                              run_all_checks: run_all_checks?)
+       messages_for(patches, output).compact
     rescue ::Brakeman::NoApplication
       []
     end
 
-    def messages_for(ruby_patches, output)
+    def messages_for(code_patches, output)
       output.filtered_warnings.map do |warning|
-        patch = patch_for_warning(ruby_patches, warning)
+        patch = patch_for_warning(code_patches, warning)
 
         next unless patch
         line = patch.added_lines.find do |added_line|
@@ -49,10 +51,27 @@ def severity_for_confidence(confidence_level)
       end
     end
 
-    def patch_for_warning(ruby_patches, warning)
-      ruby_patches.find do |patch|
+    def patch_for_warning(code_patches, warning)
+      code_patches.find do |patch|
         patch.new_file_full_path.to_s == warning.file.absolute
       end
     end
+
+    def run_all_checks?
+      pronto_brakeman_config['run_all_checks']
+    end
+
+    def pronto_brakeman_config
+      pronto_brakeman_config ||= Pronto::ConfigFile.new.to_h['brakeman'] || {}
+    end
+
+    def erb_patches
+      @erb_patches ||= Array(@patches).select { |patch| patch.additions > 0 }
+                                      .select { |patch| erb_file?(patch.new_file_full_path) }
+    end
+
+    def erb_file?(path)
+      File.extname(path) == '.erb'
+    end
   end
 end
diff --git a/lib/pronto/brakeman/version.rb b/lib/pronto/brakeman/version.rb
index 09a9e2c..bcc5d8a 100644
--- a/lib/pronto/brakeman/version.rb
+++ b/lib/pronto/brakeman/version.rb
@@ -1,5 +1,5 @@
 module Pronto
   module BrakemanVersion
-    VERSION = '0.11.0'.freeze
+    VERSION = '0.11.1'.freeze
   end
 end
diff --git a/spec/fixtures/test.git/app/views/layouts/application.html.erb b/spec/fixtures/test.git/app/views/layouts/application.html.erb
index 863127e..dc0e362 100644
--- a/spec/fixtures/test.git/app/views/layouts/application.html.erb
+++ b/spec/fixtures/test.git/app/views/layouts/application.html.erb
@@ -8,7 +8,11 @@
 </head>
 <body>
 
-<%= yield %>
+  <%= link_to some_url, target: "_blank" do -%>
+    Uh oh
+  <% end %>
+
+ <%= yield %>
 
 </body>
 </html>
diff --git a/spec/fixtures/test.git/git/COMMIT_EDITMSG b/spec/fixtures/test.git/git/COMMIT_EDITMSG
new file mode 100644
index 0000000..c6bbe62
--- /dev/null
+++ b/spec/fixtures/test.git/git/COMMIT_EDITMSG
@@ -0,0 +1 @@
+Fix typo
diff --git a/spec/fixtures/test.git/git/index b/spec/fixtures/test.git/git/index
index 45a9762..2fe53b5 100644
Binary files a/spec/fixtures/test.git/git/index and b/spec/fixtures/test.git/git/index differ
diff --git a/spec/fixtures/test.git/git/logs/HEAD b/spec/fixtures/test.git/git/logs/HEAD
index 9be2d72..3c473f4 100644
--- a/spec/fixtures/test.git/git/logs/HEAD
+++ b/spec/fixtures/test.git/git/logs/HEAD
@@ -1,2 +1,4 @@
 0000000000000000000000000000000000000000 da701274f54ae0fde7878e9834e5fb2e1148d48b Mindaugas MozÅ«ras <mindaugas.mozuras@gmail.com> 1429988205 +0300	commit (initial): Initial commit
 da701274f54ae0fde7878e9834e5fb2e1148d48b 225af1ab522457873a5994c150d7ad571ff260c0 Mindaugas MozÅ«ras <mindaugas.mozuras@gmail.com> 1429988422 +0300	commit: Add unsafe redirect_to with params
+225af1ab522457873a5994c150d7ad571ff260c0 b09de21aa02cbb43386e3a1d7e7e0a628df7ca66 Noah Berman <noah-berman@cookpad.com> 1638890290 +0000	commit: Add a link that is vulnerable to reverse tabnabbing
+b09de21aa02cbb43386e3a1d7e7e0a628df7ca66 737a2ccda4d398b65fd784dd34940c1abffa67f4 Noah Berman <noah-berman@cookpad.com> 1639049703 +0000	commit: Fix typo
diff --git a/spec/fixtures/test.git/git/logs/refs/heads/master b/spec/fixtures/test.git/git/logs/refs/heads/master
index 9be2d72..3c473f4 100644
--- a/spec/fixtures/test.git/git/logs/refs/heads/master
+++ b/spec/fixtures/test.git/git/logs/refs/heads/master
@@ -1,2 +1,4 @@
 0000000000000000000000000000000000000000 da701274f54ae0fde7878e9834e5fb2e1148d48b Mindaugas MozÅ«ras <mindaugas.mozuras@gmail.com> 1429988205 +0300	commit (initial): Initial commit
 da701274f54ae0fde7878e9834e5fb2e1148d48b 225af1ab522457873a5994c150d7ad571ff260c0 Mindaugas MozÅ«ras <mindaugas.mozuras@gmail.com> 1429988422 +0300	commit: Add unsafe redirect_to with params
+225af1ab522457873a5994c150d7ad571ff260c0 b09de21aa02cbb43386e3a1d7e7e0a628df7ca66 Noah Berman <noah-berman@cookpad.com> 1638890290 +0000	commit: Add a link that is vulnerable to reverse tabnabbing
+b09de21aa02cbb43386e3a1d7e7e0a628df7ca66 737a2ccda4d398b65fd784dd34940c1abffa67f4 Noah Berman <noah-berman@cookpad.com> 1639049703 +0000	commit: Fix typo
diff --git a/spec/fixtures/test.git/git/objects/01/7afdbc86e35b2aeacb2c67673c66de76b2ef6f b/spec/fixtures/test.git/git/objects/01/7afdbc86e35b2aeacb2c67673c66de76b2ef6f
new file mode 100644
index 0000000..e85c0a0
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/01/7afdbc86e35b2aeacb2c67673c66de76b2ef6f differ
diff --git a/spec/fixtures/test.git/git/objects/1a/434a7ca370b8a4e7dbe269824b462c735b1106 b/spec/fixtures/test.git/git/objects/1a/434a7ca370b8a4e7dbe269824b462c735b1106
new file mode 100644
index 0000000..1b9bacf
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/1a/434a7ca370b8a4e7dbe269824b462c735b1106 differ
diff --git a/spec/fixtures/test.git/git/objects/33/2406c5ad51ed6976ac26bf363994aa9085989d b/spec/fixtures/test.git/git/objects/33/2406c5ad51ed6976ac26bf363994aa9085989d
new file mode 100644
index 0000000..d27e0c5
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/33/2406c5ad51ed6976ac26bf363994aa9085989d differ
diff --git a/spec/fixtures/test.git/git/objects/70/8b611a518b602dafee3fc62eb0e1e97e32a794 b/spec/fixtures/test.git/git/objects/70/8b611a518b602dafee3fc62eb0e1e97e32a794
new file mode 100644
index 0000000..1b0b7cb
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/70/8b611a518b602dafee3fc62eb0e1e97e32a794 differ
diff --git a/spec/fixtures/test.git/git/objects/73/7a2ccda4d398b65fd784dd34940c1abffa67f4 b/spec/fixtures/test.git/git/objects/73/7a2ccda4d398b65fd784dd34940c1abffa67f4
new file mode 100644
index 0000000..834b06b
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/73/7a2ccda4d398b65fd784dd34940c1abffa67f4 differ
diff --git a/spec/fixtures/test.git/git/objects/83/8853977ce26e7891807974dafaea83c9547587 b/spec/fixtures/test.git/git/objects/83/8853977ce26e7891807974dafaea83c9547587
new file mode 100644
index 0000000..bc37d10
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/83/8853977ce26e7891807974dafaea83c9547587 differ
diff --git a/spec/fixtures/test.git/git/objects/b0/9de21aa02cbb43386e3a1d7e7e0a628df7ca66 b/spec/fixtures/test.git/git/objects/b0/9de21aa02cbb43386e3a1d7e7e0a628df7ca66
new file mode 100644
index 0000000..4cbf35e
--- /dev/null
+++ b/spec/fixtures/test.git/git/objects/b0/9de21aa02cbb43386e3a1d7e7e0a628df7ca66
@@ -0,0 +1,3 @@
+xOÍ’š@Ìyžâ»[‡‘afª’T@Yt5(þ.{ûF@Ñ­äéC6×œÒ§î®®®nÝTUÑ·Å§®5äHJ>RBhÃ#¤²$JØ)Ñ iÕG¹ä‚­©;`ŒãÑÂ„3fs!Å¹R¶¶8M¦\XÇ#s¨¦ï]Þ´6˜ƒgÚ
+køR÷â)ùßuÓ”L?ë¦ú–ÓÏP”)
+Úƒôn?³3ÿ]]²[‘ÁÓx~0a¬`3Bw»[û>ÅÌö]/ž»“ø0‹¢ Ý¾—›Ó$ZZÃÄ‹­å³·þå\3õò¾Ç¨Ä<ÓI¥r[ÅÛëKG >p7fê#/óSÂ¨;ÎÊh›G;=¸6«¾ï3ß-OSÿ§âÓñÙ>È›ê\‡€S.ÖÙü4Àés¸¤¸g™t‡nË7ñ£½†ÞÜ{uÄ‚¦¦³«,}™V©.¯Kw-?ó_Ks–äï[?œüë+qÓÎE]B—cÅ÷smZLÎºZó0í­§˜Ô˜$E‘ß[#¦è
\ No newline at end of file
diff --git a/spec/fixtures/test.git/git/objects/c1/35cd22d47f5639e61723a47debd5a6d0fe3af0 b/spec/fixtures/test.git/git/objects/c1/35cd22d47f5639e61723a47debd5a6d0fe3af0
new file mode 100644
index 0000000..b8b76cb
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/c1/35cd22d47f5639e61723a47debd5a6d0fe3af0 differ
diff --git a/spec/fixtures/test.git/git/objects/dc/0e362153d2e76f0a7ea457d665b3eb9f4aaf83 b/spec/fixtures/test.git/git/objects/dc/0e362153d2e76f0a7ea457d665b3eb9f4aaf83
new file mode 100644
index 0000000..75063bc
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/dc/0e362153d2e76f0a7ea457d665b3eb9f4aaf83 differ
diff --git a/spec/fixtures/test.git/git/objects/eb/593c37df1cf6c6904adb9fa5f27f1757939802 b/spec/fixtures/test.git/git/objects/eb/593c37df1cf6c6904adb9fa5f27f1757939802
new file mode 100644
index 0000000..2429683
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/eb/593c37df1cf6c6904adb9fa5f27f1757939802 differ
diff --git a/spec/fixtures/test.git/git/objects/ec/0e22e42de60b4180b3762557e605a3062c1d40 b/spec/fixtures/test.git/git/objects/ec/0e22e42de60b4180b3762557e605a3062c1d40
new file mode 100644
index 0000000..de5051e
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/ec/0e22e42de60b4180b3762557e605a3062c1d40 differ
diff --git a/spec/fixtures/test.git/git/objects/fc/ce070251b258ea92c18cae48bacafb8179a140 b/spec/fixtures/test.git/git/objects/fc/ce070251b258ea92c18cae48bacafb8179a140
new file mode 100644
index 0000000..999dcb9
Binary files /dev/null and b/spec/fixtures/test.git/git/objects/fc/ce070251b258ea92c18cae48bacafb8179a140 differ
diff --git a/spec/fixtures/test.git/git/refs/heads/master b/spec/fixtures/test.git/git/refs/heads/master
index 4de84ba..d963748 100644
--- a/spec/fixtures/test.git/git/refs/heads/master
+++ b/spec/fixtures/test.git/git/refs/heads/master
@@ -1 +1 @@
-225af1ab522457873a5994c150d7ad571ff260c0
+737a2ccda4d398b65fd784dd34940c1abffa67f4
diff --git a/spec/pronto/brakeman_spec.rb b/spec/pronto/brakeman_spec.rb
index 3924c30..75979d2 100644
--- a/spec/pronto/brakeman_spec.rb
+++ b/spec/pronto/brakeman_spec.rb
@@ -3,6 +3,14 @@
 module Pronto
   describe Brakeman do
     let(:brakeman) { Brakeman.new(patches) }
+    let(:pronto_config) do
+      instance_double Pronto::ConfigFile, to_h: config_hash
+    end
+    let(:config_hash) { {} }
+
+    before do
+      allow(Pronto::ConfigFile).to receive(:new) { pronto_config }
+    end
 
     describe '#run' do
       subject { brakeman.run }
@@ -33,6 +41,48 @@ module Pronto
             'Possible security vulnerability: [Possible unprotected redirect](https://brakemanscanner.org/docs/warning_types/redirect/)'
         end
       end
+
+      context 'with a change to an erb file' do
+        context 'with brakeman not included in pronto config' do
+          let(:config_hash) { { 'foo' => {} } }
+          include_context 'test repo'
+          let(:patches) { repo.diff('b09de21aa02cbb43386e3a1d7e7e0a628df7ca66') }
+
+          it 'should disable all checks' do
+            expect(brakeman.run_all_checks?).to eq nil
+          end
+
+          its(:count) { should == 0 }
+        end
+
+        context 'with brakeman included in pronto config' do
+          context 'with run all checks disabled' do
+            let(:config_hash) { { 'brakeman' => { 'run_all_checks' => false } } }
+            include_context 'test repo'
+            let(:patches) { repo.diff('b09de21aa02cbb43386e3a1d7e7e0a628df7ca66') }
+
+            it 'should disable all checks' do
+              expect(brakeman.run_all_checks?).to eq false
+            end
+
+            its(:count) { should == 0 }
+          end
+
+          context 'with run all checks enabled' do
+            let(:config_hash) { { 'brakeman' => { 'run_all_checks' => true } } }
+            include_context 'test repo'
+            let(:patches) { repo.diff('b09de21aa02cbb43386e3a1d7e7e0a628df7ca66') }
+
+            it 'should enable all checks' do
+              expect(brakeman.run_all_checks?).to eq true
+            end
+            its(:count) { should == 1 }
+            it "should report a tabnabbing vulnerability" do
+              expect(subject.first.msg).to include("Possible security vulnerability: [When opening a link in a new tab without setting `rel:")
+            end
+          end
+        end
+      end
     end
 
     describe "#severity_for_confidence" do
diff --git a/spec/spec_helper.rb b/spec/spec_helper.rb
index 76444f5..c9a66f3 100644
--- a/spec/spec_helper.rb
+++ b/spec/spec_helper.rb
@@ -13,6 +13,6 @@
 end
 
 RSpec.configure do |config|
-  config.expect_with(:rspec) { |c| c.syntax = :should }
-  config.mock_with(:rspec) { |c| c.syntax = :should }
+  config.expect_with(:rspec) { |c| c.syntax = [:should, :expect] }
+  config.mock_with(:rspec) { |c| c.syntax =  [:should, :expect] }
 end
