[Owasp-germany] OWASP Open Review Project

Thomas Schreiber (SecureNet GmbH) ts at securenet.de
Mon Jun 9 05:50:05 EDT 2008

Hallo zusammen,

Mario de Boer vom Dutch OWASP Chapter bittet um Weiterleitung seiner Anfrage
um Unterstützung beim OWASP Open Review Project - was ich hiermit tue.

Beste Grüße
Thomas Schreiber, SecureNet GmbH


Last week I started the OWASP Open Review Project (ORPRO). Goal is to
perform independent security review of commonly used open source

I am in the middle of setting up the project, and looking at the
following aspects:
1. Code review collaboration platform (requirements, hosting, costs, etc)
2. Which open source projects to review (common libraries, OWASP
projects, apps most popular with OWASP, etc)
3. Work instructions for reviewers (use of OWASP and other resources,
tools, etc.)
4. Rules for disclosure (attributed to reviewer, no commercial gain,
use of oCERT, etc)

Project page:
Mailing list:

Any help is appreciated!

-- Mario

More information about the Owasp-germany mailing list