<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">Looks ok to me. <br>
      Tobias<br>
      <br>
      <br>
      On 24/05/14 03:08, Jim Manico wrote:<br>
    </div>
    <blockquote cite="mid:537FFF35.5020103@owasp.org" type="cite">
      <meta http-equiv="content-type" content="text/html;
        charset=ISO-8859-1">
      Here is the proposed text for the flagship announcement to the
      leaders and community lists. Is everyone from the board and staff
      happy with this text? I took everyone's comment from Google Docs
      and made the requested changes.<br>
      <br>
      Aloha,<br>
      Jim<br>
      <br>
      ***<br>
      <br>
      <meta charset="utf-8">
      <b style="font-weight:normal;"
        id="docs-internal-guid-b096cb36-2bfb-3027-e3b8-835eda181c6b">
        <p dir="ltr"
          style="line-height:1.15;margin-top:0pt;margin-bottom:0pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">On

            April 30 2014, the OWASP Board voted to change all projects
            with Flagship Status to Labs status. This message is
            intended to explain why we did this and what the future of
            OWASP projects and project evaluation is.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.15;margin-top:0pt;margin-bottom:0pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">It’s

            critical that the OWASP Foundation is sincere about the
            classification of our project inventory. Our “customers”
            depend upon these projects to provide a wide variety of
            critical security services. These include discovery of
            security vulnerabilities, cryptographic services, developer
            security education and a number of critical security
            controls. Some OWASP projects are used in the very heart of
            our customers infrastructure! </span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.15;margin-top:0pt;margin-bottom:0pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Our

            current methodology of project classification is based on
            three categories: </span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:italic;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Incubator

            Projects</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">,
          </span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:italic;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Labs

            Projects</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">
            and </span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:italic;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Flagship

            Projects</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">.
            Let’s take a moment to explore what these categories mean as
            they stand today.  </span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.15;margin-top:0pt;margin-bottom:0pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:bold;font-style:normal;font-variant:normal;text-decoration:underline;vertical-align:baseline;white-space:pre-wrap;">OWASP

            Incubator Projects</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">
            are “proofs of concept, experimental, and classified as
            prototypes” in their current state.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:bold;font-style:normal;font-variant:normal;text-decoration:underline;vertical-align:baseline;white-space:pre-wrap;">OWASP

            Labs Projects</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">
            represent projects that have produced a deliverable of
            significant value but are not guaranteed to be production
            ready.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#252525;background-color:#ffffff;font-weight:bold;font-style:normal;font-variant:normal;text-decoration:underline;vertical-align:baseline;white-space:pre-wrap;">OWASP

            Flagship Projects</span><span
style="font-size:15px;font-family:Arial;color:#252525;background-color:#ffffff;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">
            clearly denote production quality projects that
            organizations can trust and depend on.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Evaluating

            almost 200 projects is no small task. The OWASP project list
            has not changed much over the last 2 years. Unfortunately,
            some of our flagship projects have not been active and have
            languished to a point where flagship status may not be
            appropriate.  Also, as OWASP continues to mature its project
            management and review capabilities, these categories may go
            away.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">In

            an effort to present a more accurate and up-to-date status
            of OWASP projects, the OWASP Board has voted to reduce all
            Flagships projects to LABS status and will require projects
            to go through an evaluation process in order to be deemed
            flagship once again. This message states that current
            flagship projects are still important projects that deliver
            significant value, but may not be production ready or up to
            date.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">OWASP

            is in the midst of building a new project review
            infrastructure and the processes to go with that. Our new
            project review mechanism is not finalized yet, but the </span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:italic;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">OWASP

            Community</span><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">
            is working to build that new strategy. But we need to
            realize that while many of our projects are great ideas, not
            all of them are “production quality projects”. Please look
            for a proposal with options for comment and a community vote
            in the upcoming weeks.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">We

            know this may upset some in our community, but we want to
            emphasize that we felt that several OWASP Flagship projects
            (which are of great value) were languishing in a variety of
            ways. Our goal was to present OWASP projects in a more
            honest light. OWASP Labs status again denotes great value.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Thanks

            you for your consideration over this matter. We are eager to
            hear any feedback from the community to help make OWASP
            projects better in the future.</span></p>
        <br>
        <p dir="ltr"
          style="line-height:1.309090961109508;margin-top:4pt;margin-bottom:6pt;"><span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">Regards,</span></p>
        <span
style="font-size:15px;font-family:Arial;color:#000000;background-color:transparent;font-weight:normal;font-style:normal;font-variant:normal;text-decoration:none;vertical-align:baseline;white-space:pre-wrap;">The

          OWASP Board and Staff</span></b>
      <meta charset="utf-8">
      <br>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Owasp-board mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Owasp-board@lists.owasp.org">Owasp-board@lists.owasp.org</a>
<a class="moz-txt-link-freetext" href="https://lists.owasp.org/mailman/listinfo/owasp-board">https://lists.owasp.org/mailman/listinfo/owasp-board</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>