[Owasp-codereview] Code Review Guide: Update

Eoin eoin.keary at owasp.org
Wed May 28 05:57:26 EDT 2008

Hello my fellow security colleagues :)

May I ask that anyone which is contributing to the OWASP Code review guide
please start updating the wiki with their work :)
This shall help in reviewing the work and brainstorming.

Currently I have only a few volunteers which is expected as the view that
Testing is more s3xy still stands (from experience of leading the testing
guide), but OWASP is about building secure applications from the get-go
which is a more sustainable model rather that the "s3xy" pen & patch model.
Code review is getting more and more mainstream and has formed into a large
niche industry (see Fortify or Ounce Labs) for example.

The List of chapters available to add to of start anew are here:

Currently I have the following contributors:

Application Threat Modeling* :*    Marco Morana & David Rook
Code review Metrics* :               *Allison Shubert
Reviewer:                                Nam Nguyen
OWASP board reviewer:           Jeff Williams:
Review + Author:                     P.Satish Kumar

If I have overlooked you please let me know.

So lets get updating that wiki!!!!


Eoin Keary OWASP - Ireland
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-codereview/attachments/20080528/72552fd2/attachment.html 

More information about the Owasp-codereview mailing list