Difference between revisions of "GPC Agenda 2009-11-23"

From OWASP
Jump to: navigation, search
(Current Meeting)
(Current Meeting)
Line 6: Line 6:
 
== Current Meeting  ==
 
== Current Meeting  ==
  
*[[:Summit 2009|"OWASP Mini-Summit 2009"]]/[[:OWASP AppSec DC 2009]] - Wrap-up:
+
*[[:Summit 2009|"OWASP Mini-Summit 2009"]]/[[:OWASP AppSec DC 2009]] - Wrap-up:  
 
**Decisions made in DC with impact on GPC activity,  
 
**Decisions made in DC with impact on GPC activity,  
 
**Has the GPC had the opportunity to contact M. Bobersky to answer his questions? [https://docs.google.com/a/owasp.org/Doc?docid=0AX4Puwz7EA41ZGNuODk2MmNfNTRjZGd0OTdkcw&hl=en M. Boberski's questions]
 
**Has the GPC had the opportunity to contact M. Bobersky to answer his questions? [https://docs.google.com/a/owasp.org/Doc?docid=0AX4Puwz7EA41ZGNuODk2MmNfNTRjZGd0OTdkcw&hl=en M. Boberski's questions]
  
* Leo wants to discuss about issues on usage of OWASP resources. Is this the right forum?
+
*Leo wants to discuss about issues on usage of OWASP resources. Is this the right forum?  
**Brazilian AppSec Conference
+
**Brazilian AppSec Conference  
**Brazilian book that has a translated version of Top10 "integrally", without any reference to OWASP
+
**Brazilian book that has a translated version of Top10 "integrally", without any reference to OWASP  
 +
*We should discuss the GPC "Chair" based on discussions at the Summit in DC. I am willing to take this on, but we can discuss further on the next call. (Brad)
  
 
----
 
----
  
*Projects
+
*Projects  
** [[:Category:OWASP_ModSecurity_Core_Rule_Set_Project#tab=Project_Details|OWASP ModSecurity Core Rule Set Project]] is ready for assessment and needs a GPC reviewer. Volunteers?
+
**[[:Category:OWASP ModSecurity Core Rule Set Project#tab.3DProject_Details|OWASP ModSecurity Core Rule Set Project]] is ready for assessment and needs a GPC reviewer. Volunteers?  
** [[:Category:OWASP Content Validation using Java Annotations Project|OWASP Content Validation using Java Annotations Project]] is ready for assessment and needs '''TWO''' GPC reviewers as it hasn't been possible to find any volunteers within our project leaders. Volunteers?
+
**[[:Category:OWASP Content Validation using Java Annotations Project|OWASP Content Validation using Java Annotations Project]] is ready for assessment and needs '''TWO''' GPC reviewers as it hasn't been possible to find any volunteers within our project leaders. Volunteers?
  
* Releases translation process
+
*Releases translation process  
** Shall we handle this or let with other Committe?
+
**Shall we handle this or let with other Committe?  
** Define process only for docs or also tools?
+
**Define process only for docs or also tools?
  
 
----
 
----
*Project Reviewers,
+
 
** In the sequence of suggestions and comments previously made by Tom and Brad and Matt, I've created a [[OWASP Project Reviewers Database|first straw of the page]] to receive information about hypothetical volunteer project reviewers.
+
*Project Reviewers,  
 +
**In the sequence of suggestions and comments previously made by Tom and Brad and Matt, I've created a [[OWASP Project Reviewers Database|first straw of the page]] to receive information about hypothetical volunteer project reviewers.  
 
***Please check it out and let me know if you think any changes have to be made.  
 
***Please check it out and let me know if you think any changes have to be made.  
***Also, it seems to me that the next phases of this process could consist in pushing it forward by using this page to describe the review job role and, thereafter, by doing a call for reviewers through our leaders' mailing list.
+
***Also, it seems to me that the next phases of this process could consist in pushing it forward by using this page to describe the review job role and, thereafter, by doing a call for reviewers through our leaders' mailing list.  
 
***If you agree with this methodology I ask if one of you have the spare cycles to produce the above referred job description. Later on a text to support the call for reviewers will also be needed - I will produce a first draft for your comments if nobody assumes first the task.
 
***If you agree with this methodology I ask if one of you have the spare cycles to produce the above referred job description. Later on a text to support the call for reviewers will also be needed - I will produce a first draft for your comments if nobody assumes first the task.
  
 
----
 
----
 +
 
*GPC participation at the [http://www.ibwas.com/index.html Iberic Web Application Security] conference (IBWAS09):  
 
*GPC participation at the [http://www.ibwas.com/index.html Iberic Web Application Security] conference (IBWAS09):  
**For GPC's information, Paulo is partially using his time to assist the conference management team.
+
**For GPC's information, Paulo is partially using his time to assist the conference management team.  
 
**We need a 1h slide deck about OWASP projects to be delivered at the next AppSec Conference in Madrid.
 
**We need a 1h slide deck about OWASP projects to be delivered at the next AppSec Conference in Madrid.
  

Revision as of 12:51, 24 November 2009

Previous meetings and Dial-in details

see GPC Meetings for previous GPC Meetings Agenda and the Dial-In details

Agenda

Current Meeting

  • Leo wants to discuss about issues on usage of OWASP resources. Is this the right forum?
    • Brazilian AppSec Conference
    • Brazilian book that has a translated version of Top10 "integrally", without any reference to OWASP
  • We should discuss the GPC "Chair" based on discussions at the Summit in DC. I am willing to take this on, but we can discuss further on the next call. (Brad)

  • Releases translation process
    • Shall we handle this or let with other Committe?
    • Define process only for docs or also tools?

  • Project Reviewers,
    • In the sequence of suggestions and comments previously made by Tom and Brad and Matt, I've created a first straw of the page to receive information about hypothetical volunteer project reviewers.
      • Please check it out and let me know if you think any changes have to be made.
      • Also, it seems to me that the next phases of this process could consist in pushing it forward by using this page to describe the review job role and, thereafter, by doing a call for reviewers through our leaders' mailing list.
      • If you agree with this methodology I ask if one of you have the spare cycles to produce the above referred job description. Later on a text to support the call for reviewers will also be needed - I will produce a first draft for your comments if nobody assumes first the task.

  • GPC participation at the Iberic Web Application Security conference (IBWAS09):
    • For GPC's information, Paulo is partially using his time to assist the conference management team.
    • We need a 1h slide deck about OWASP projects to be delivered at the next AppSec Conference in Madrid.

From Previous Meeting/Follow up

Issues for next Meeting

  • Add here

Minutes

  • Meeting started 10H PM/GMT
  • Add here