Difference between revisions of "Project Information:template Code Review Project"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
  ! colspan="7" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''  
+
  ! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
  | colspan="6" style="width:85%; background:#cccccc" align="left"|<font color="black">'''OWASP Code Review Project V1.1'''  
+
  | colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">'''OWASP Code Review Project V1.1'''  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
 
  | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
  | colspan="6" style="width:85%; background:#cccccc" align="left"|The code review guide is currently at version RC 2.0 and the second best selling OWASP book. I have received many positive comments regarding this initial version and believe it’s a key enabler for the OWASP fight against software insecurity. It has even inspired individuals to build tools based on its information and I have convinced such people (Alessio Marziali) to open source their tool and make it an OWASP project. The combination of a book on secure code review and a tool to support such an activity is very powerful as it gives the developer community a place to start regarding secure application development. Proposal: I am proposing that I improve the code review guide from a number of aspects. This should place the guide as a de facto secure code review guide in the application security industry.   
+
  | colspan="7" style="width:85%; background:#cccccc" align="left"|The code review guide is currently at version RC 2.0 and the second best selling OWASP book. I have received many positive comments regarding this initial version and believe it’s a key enabler for the OWASP fight against software insecurity. It has even inspired individuals to build tools based on its information and I have convinced such people (Alessio Marziali) to open source their tool and make it an OWASP project. The combination of a book on secure code review and a tool to support such an activity is very powerful as it gives the developer community a place to start regarding secure application development. Proposal: I am proposing that I improve the code review guide from a number of aspects. This should place the guide as a de facto secure code review guide in the application security industry.   
 
  |-
 
  |-
  | style="width:15%; background:#7B8ABD" align="center"|'''Email Contacts'''
+
  | style="width:15%; background:#7B8ABD" align="center"|'''Project key Information'''
 
  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[[User:EoinKeary|'''Eoin Keary''']]
 
  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[[User:EoinKeary|'''Eoin Keary''']]
 
  | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>(if applicable)<br>[mailto:to(at)change '''Name&Email''']
 
  | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>(if applicable)<br>[mailto:to(at)change '''Name&Email''']
  | style="width:14%; background:#cccccc" align="center"|[https://lists.owasp.org/mailman/listinfo/owasp-codereview '''Mailing List/Subscribe''']
+
  | style="width:14%; background:#cccccc" align="center"|Mailing List<br>[https://lists.owasp.org/mailman/listinfo/owasp-codereview '''Subscribe here''']
[mailto:owasp-codereview(at)lists.owasp.org '''Mailing List/Use''']
+
[mailto:owasp-codereview(at)lists.owasp.org '''Use here''']
 +
| style="width:14%; background:#cccccc" align="center"|License<br>[http://creativecommons.org/licenses/by-sa/3.0/ '''Creative Commons Attribution Share Alike 3.0''']
 +
| style="width:14%; background:#cccccc" align="center"|Project Type<br>[[:Category:OWASP_Project#Quality Status Projects|'''Documentation''']]
 +
| style="width:15%; background:#cccccc" align="center"|Sponsors<br>[[OWASP Summer of Code 2008|'''OWASP SoC 08''']] 
 +
|}
 +
{| style="width:100%" border="0" align="center"
 +
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Release Status'''
 +
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Main Links'''
 +
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Related Projects'''
 +
|-
 +
| style="width:29%; background:#cccccc" align="center"|
 +
'''[[:Category:OWASP_Project_Assessment#Beta_Quality_Documentation_Criteria|Release Quality]]'''<br>[[:OWASP Code Review Project V1.1 - Assessment Frame|Please see here for complete information.]]
 +
| style="width:42%; background:#cccccc" align="center"|
 +
* About OWASP Backend Security Project: [https://www.owasp.org/images/2/20/OWASP_EU_Summit_2008_Presentation_Model.ppt PowerPoint]
 +
* PDF version: [http://www.owasp.org/index.php/Image:OWASP_Backend_Security_Project_1.0beta.pdf OWASP Backend Security Project 1.0 beta.pdf]
 +
* DOC version: [http://www.owasp.org/index.php/Image:OWASP_Backend_Security_Project_1.0beta.doc OWASP Backend Security Project 1.0 beta.doc]
 +
* [[OWASP Backend Security Project|OWASP Backend Security Project v1.0]]
 +
* (If appropriate, more links to be added)
 +
| style="width:29%; background:#cccccc" align="center"|
 +
* (If appropriate, add links)
 +
|}
 +
 
 +
 
 
  | style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[[User:Rahimjina|'''Rahim Jina''']]
 
  | style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[[User:Rahimjina|'''Rahim Jina''']]
 
  | style="width:14%; background:#cccccc" align="center"|Second Reviewer<br>[[User:Satishkumar|'''P.Satish Kumar''']]
 
  | style="width:14%; background:#cccccc" align="center"|Second Reviewer<br>[[User:Satishkumar|'''P.Satish Kumar''']]

Revision as of 10:16, 7 January 2009

PROJECT IDENTIFICATION
Project Name OWASP Code Review Project V1.1
Short Project Description The code review guide is currently at version RC 2.0 and the second best selling OWASP book. I have received many positive comments regarding this initial version and believe it’s a key enabler for the OWASP fight against software insecurity. It has even inspired individuals to build tools based on its information and I have convinced such people (Alessio Marziali) to open source their tool and make it an OWASP project. The combination of a book on secure code review and a tool to support such an activity is very powerful as it gives the developer community a place to start regarding secure application development. Proposal: I am proposing that I improve the code review guide from a number of aspects. This should place the guide as a de facto secure code review guide in the application security industry.
Project key Information Project Leader
Eoin Keary
Project Contributors
(if applicable)
Name&Email
Mailing List
Subscribe here

Use here

License
Creative Commons Attribution Share Alike 3.0
Project Type
Documentation
Sponsors
OWASP SoC 08
Release Status Main Links Related Projects

Release Quality
Please see here for complete information.

  • (If appropriate, add links)


| style="width:14%; background:#cccccc" align="center"|First Reviewer
Rahim Jina | style="width:14%; background:#cccccc" align="center"|Second Reviewer
P.Satish Kumar | style="width:15%; background:#cccccc" align="center"|OWASP Board Member
[[User:Jeff Williams|Jeff Williams] |}
PROJECT MAIN LINKS
RELATED PROJECTS
SPONSORS & GUIDELINES
Sponsor - OWASP Summer of Code 2008 Sponsored Project/Guidelines/Roadmap
ASSESSMENT AND REVIEW PROCESS
Review/Reviewer Author's Self Evaluation
(applicable for Alpha Quality & further)
First Reviewer
(applicable for Alpha Quality & further)
Second Reviewer
(applicable for Beta Quality & further)
OWASP Board Member
(applicable just for Release Quality)
50% Review Objectives & Deliveries reached?
Yes (To update)
---------
See&Edit:50% Review/Self-Evaluation (A)
Objectives & Deliveries reached?
Yes
---------
See&Edit: 50% Review/1st Reviewer (C)
Objectives & Deliveries reached?
Yes
---------
See&Edit: 50%Review/2nd Reviewer (E)
X
Final Review Objectives & Deliveries reached?
Yes
---------
Which status has been reached?
Release Quality
---------
See&Edit: Final Review/SelfEvaluation (B)
Objectives & Deliveries reached?
Yes
---------
Which status has been reached?
Release Quality
---------
See&Edit: Final Review/1st Reviewer (D)
Objectives & Deliveries reached?
Yes
---------
Which status has been reached?
Release Quality
---------
See&Edit: Final Review/2nd Reviewer (F)
Objectives & Deliveries reached?
Yes
---------
Which status has been reached?
Release Quality
---------
See/Edit: Final Review/Board Member (G)