Difference between revisions of "Project Information:template Source Code Flaws Top 10 Project"

From OWASP
Jump to: navigation, search
Line 24: Line 24:
 
  |-
 
  |-
 
  | style="width:100%; background:#cccccc" align="center"|
 
  | style="width:100%; background:#cccccc" align="center"|
Yasca is hosted on SourceForge (http://sourceforge.net/projects/yasca) with additional information at http://yasca.org.
+
* Add here.  
 
+
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
Line 32: Line 31:
 
  | style="width:100%; background:#cccccc" align="center"|
 
  | style="width:100%; background:#cccccc" align="center"|
 
* [[:Category:OWASP Orizon Project|OWASP Orizon Project]]<br>
 
* [[:Category:OWASP Orizon Project|OWASP Orizon Project]]<br>
* [[:Category:OWASP Code Review_Project|OWASP Code Review_Project]]
+
* [[:Category:OWASP Code Review_Project|OWASP Code Review Project]]
* [[:Category:OWASP Open Review Project|OWASP Open Review Project]]
+
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"

Revision as of 07:50, 14 December 2008

PROJECT IDENTIFICATION
Project Name OWASP Source Code Flaws Top 10 Project
Short Project Description
  • While trying to build a taxonomy for source code flaw categories to be applied to both Code Review Guide than to Owasp Orizon project, I proposed Eoin Keary (Code Review Guide's Leader) a sort of Top 10 of flaw categories that can be used to match vulnerabilities found during a code review.
  • I started hacking over the venerable work of Gary McGraw and his "Seven kingdoms" but I found that something can be extendend to match a sort of Top 10 document also for Code Review assessement.
  • This project deliverable will be a document with an outline very close to the "Owasp Top 10" one.
Key Project Information Licensed under
Choose here & replace link with license name
Project Leader
Paolo Perego
Project Contributors
Name
Mailing List
To Subscribe
To Use
First Reviewer
Name
Second Reviewer
Name
OWASP Board Member
(if applicable)
Name
PROJECT MAIN LINKS
  • Add here.
RELATED PROJECTS
SPONSORS & GUIDELINES
Sponsor name, if applicable Guidelines/Roadmap
ASSESSMENT AND REVIEW PROCESS
Review/Reviewer Author's Self Evaluation
(applicable for Alpha Quality & further)
First Reviewer
(applicable for Alpha Quality & further)
Second Reviewer
(applicable for Beta Quality & further)
OWASP Board Member
(applicable just for Release Quality)
First Review Objectives & Deliveries reached?
Not yet (To update)
---------
Which status has been reached?
Alpha Status - (To update)
---------
See&Edit: First Review/SelfEvaluation (A)
Objectives & Deliveries reached?
Not yet (To update)
---------
Which status has been reached?
Alpha Status - (To update)
---------
See&Edit: First Review/1st Reviewer (B)
Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Alpha Status - (To update)
---------
See&Edit: First Review/2nd Reviewer (C)
Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Alpha Status - (To update)
---------
See/Edit: First Review/Board Member (D)