[Owasp-codereview] Code Review Guide: Update

Eoin eoin.keary at owasp.org
Wed May 28 05:57:26 EDT 2008


Hello my fellow security colleagues :)

May I ask that anyone which is contributing to the OWASP Code review guide
please start updating the wiki with their work :)
This shall help in reviewing the work and brainstorming.

Currently I have only a few volunteers which is expected as the view that
Testing is more s3xy still stands (from experience of leading the testing
guide), but OWASP is about building secure applications from the get-go
which is a more sustainable model rather that the "s3xy" pen & patch model.
Code review is getting more and more mainstream and has formed into a large
niche industry (see Fortify or Ounce Labs) for example.

The List of chapters available to add to of start anew are here:
https://www.owasp.org/index.php/Summer_Of_Code_2008_Index_of_Tasks_Assigned

Currently I have the following contributors:

Application Threat Modeling* :*    Marco Morana & David Rook
Code review Metrics* :               *Allison Shubert
Reviewer:                                Nam Nguyen
OWASP board reviewer:           Jeff Williams:
Review + Author:                     P.Satish Kumar

If I have overlooked you please let me know.

So lets get updating that wiki!!!!

Slan,
Eoin






-- 
Eoin Keary OWASP - Ireland
http://www.owasp.org/local/ireland.html
http://www.owasp.org/index.php/OWASP_Code_Review_Project
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-codereview/attachments/20080528/72552fd2/attachment.html 


More information about the Owasp-codereview mailing list