[Owasp-leaders] Fwd: OWASP volunteer with questions on Java EE source code

Paul Ritchie paul.ritchie at owasp.org
Mon Aug 4 19:22:08 UTC 2014


To OWASP Leaders:   Occassionally we see these types of questions sent to
OWASP, and I thought I'd forward this one on to our expert leaders group.
 Anyone want to reach out and start a dialogue wtih Luciano?
------- begin message ------------

Hi,   ( lsampaioweb at gmail.com )

My name is Luciano Sampaio. I am creating an application that finds
security vulnerabilities in the source code of Java EE applications and I
was wondering if there is any list with all the "Sources", "Sinks" and
"Sanitization" methods that a security application should know of ?

I tried to find a list like that on the Internet and on your site but I
couldn't, so I have created my own list from what I found on other
applications. Do you think maybe we can create a page here with this list
and help future applications ?

Thank you!
Luciano Sampaio
------------------------end message -----------------
-- 
Best Regards, Paul Ritchie
OWASP Interim Executive Director
paul.ritchie at owasp.org




-- 
Best Regards, Paul Ritchie
OWASP Interim Executive Director
paul.ritchie at owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20140804/6e57b4c9/attachment.html>


More information about the OWASP-Leaders mailing list