[Owasp-board] [Owasp-leaders] Call for contributors - OWASP Code Review ProjectV1.1.

Paulo Coimbra paulo.coimbra at owasp.org
Tue Jul 22 13:13:08 UTC 2008

Hi Jeff,


I definitely got your remark about the boring tone of the messages. I thank
your guidance and I will try to do it better next time.




Paulo Coimbra, 

OWASP Foundation <https://www.owasp.org/index.php/Main_Page>  Project


OWASP AppSec NYC 2008 is coming...  are you ready?


From: Jeff Williams [mailto:jeff.williams at aspectsecurity.com] 
Sent: 21 July 2008 21:12
To: Paulo Coimbra
Cc: owasp-board at lists.owasp.org
Subject: RE: [Owasp-leaders] Call for contributors - OWASP Code Review


Hi Paulo,


I think it helps to create a sense of urgency with messages like this.
Starting with "once again." makes it seem like this is another boring
reminder of something that can wait.  We need to make this sound like an
OPPORTUNITY that they shouldn't miss out on.


In future announcements, let's establish an artificial deadline and some
urgency like this.


Don't miss this opportunity to help code review teams worldwide.  The OWASP
Code Review Guide v2.0 is being released in less than two months.  There are
still a few articles that need to be written, completed, or reviewed.


   Version 2.0 publication date (hardcopy freeze)

-          September 1, 2008


   Critical Open Tasks:

-          New Article: "Why code review rocks"  - volunteer now!

-          New Article: "Tools are for fools" - volunteer now!

-          New Article: "I'm too smart to write security code" - volunteer

-          Update Article: "Reviewing Struts authorization" - volunteer now!

-          More.


Stuff like that helps to get people moving.




From: owasp-leaders-bounces at lists.owasp.org
[mailto:owasp-leaders-bounces at lists.owasp.org] On Behalf Of Paulo Coimbra
Sent: Monday, July 21, 2008 12:58 PM
To: owasp-leaders at lists.owasp.org
Subject: [Owasp-leaders] Call for contributors - OWASP Code Review


Hi all,

Once again, OWASP needs your help with an important project - this time
OWASP Code Review Project. 


The code review guide is currently at version RC 2.0 and the second best
selling OWASP book. It has received many positive comments regarding this
initial version and we believe it is a key enabler for the OWASP fight
against software insecurity. The combination of a book on secure code review
and a tool to support such an activity is very powerful as it gives the
developer community a place to start regarding secure application
development. The project leader (Eoin Keary) is aiming to improve the code
review guide from a number of aspects. This should place the guide as a de
facto secure code review guide in the application security industry.


Some links:
* OWASP <https://www.owasp.org/index.php/Category:OWASP_Code_Review_Project>
Code Review Project,

Code Review Guide - Table of Contents,

*  Code Review Guide (RC2) Book <http://www.lulu.com/content/1415989> .


Won't you please volunteer and contribute your knowledge to the world?  All
you have to do is send an email to Eoin Keary (eoin.keary at owasp.org). 

Many thanks, best regards.


Paulo Coimbra, 

OWASP <https://www.owasp.org/index.php/Main_Page>  Foundation Project


OWASP AppSec NYC 2008 is coming...  are you ready?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20080722/d164843a/attachment-0002.html>

More information about the Owasp-board mailing list