[Owasp_project_leader_list] [Owasp-leaders] Feedback needed on Project Review tool
johanna curiel curiel
johanna.curiel at owasp.org
Wed May 28 10:54:29 UTC 2014
One of our tools is ohloh.net, I think much of the informnation and graphs
provided are a starting point for measuring activity however I noticed they
are not accurate and does not measure activity properly, therefore ohloh is
I'm very glad with this initiative and please let me know how can I
contribute to push it.
On Tue, May 27, 2014 at 7:43 PM, Enrico Branca <enrico.branca at owasp.org>wrote:
> That was also our idea, an OWASP tool to measure OWASP projects using
> metrics defined by OWASP leaders :)
> Yes could be easily automated depending on code repository.
> At the moment we are using github and we are looking into python code,
> for other stuff we will need to check each service API and build a
> proper client to parse the data, but again doable once a scope is defined.
> And for the dashboard we will definitely need help, as I am sure you
> have noticed that our pages are far from pretty and there is almost no
> graphic design to it. If you have ideas on which kind of data is needed
> to populate a dashboard we can work to make one for projects using
> github and once we have a proof of concept we can see how to develop it.
> So if you have examples or screenshots of dashboards you like we can
> look into it and decide graphs and data visualization. We are open to
> ideas and together we can try to build the ideal OWASP dashboard. If
> people are willing to help we can give it a try. ;)
> On 28/05/2014 01:18, Josh Sokol wrote:
> > I absolutely love the idea of using an OWASP tool to measure the quality
> > other OWASP tools. Could we scale this to be able to automatically run
> > periodic assessments (ideally nightly) for all code-based OWASP projects?
> > Creating an automated dashboard would be so so so amazingly awesome.
> > you for your efforts!
> > ~josh
> > On Tue, May 27, 2014 at 6:03 PM, Tobias <tobias.gondrom at owasp.org>
> >> Hi Enrico and team,
> >> thanks a lot.
> >> I think this is quite interesting insight stats and could be useful as
> >> one of the data points in our overall project monitoring.
> >> One question: is it automated enough to maintain this stat tool across
> >> several projects without too much effort for you guys? ;-)
> >> Cheers, Tobias
> >> On 27/05/14 23:30, Enrico Branca wrote:
> >>> Leaders,
> >>> To contribute to the community effort on project rating and quality
> >>> assurance at the "OWASP Python Security Project" we have decided to
> >>> support this effort by building a tool to collect quantitative data.
> >>> Reference: "Project Reviews Quality Assurance approach"
> >>> https://www.owasp.org/index.php/Proposal_Project_Review_QA_Approach
> >>> This tool will be able to generate as much data as needed by scanning
> >>> github repositories and analysing files, allowing customization of
> >>> metrics, reports and also of data sources.
> >>> We have run the tool against our project repository and generated some
> >>> statistics expressed as text data and tables, in the future there will
> >>> be graphs and infographic as needed.
> >>> DEMO SITE --> http://www.pythonsecurity.org/stats
> >>> Is the data produced useful?
> >>> Did we miss anything critical?
> >>> Anything wrong that has to be removed?
> >>> Ideas on what needs to be added or changed?
> >>> We are not really experts on software metrics and we are open to new
> >>> ideas, any feedback or criticism is accepted and warmly encouraged.
> >>> Regards,
> >>> Enrico
> >>> _______________________________________________
> >>> OWASP-Leaders mailing list
> >>> OWASP-Leaders at lists.owasp.org
> >>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
> >> _______________________________________________
> >> OWASP-Leaders mailing list
> >> OWASP-Leaders at lists.owasp.org
> >> https://lists.owasp.org/mailman/listinfo/owasp-leaders
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp_project_leader_list