This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Project Information:template Teachable Static Analysis Workbench - Final Review - Self Evaluation - B
Clik here to return to the previous page.
FINAL REVIEW | ||
---|---|---|
PART I | ||
Project Deliveries & Objectives |
OWASP Teachable Static Analysis Workbench Project's Deliveries & Objectives | |
QUESTIONS | ANSWERS | |
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please exemplify writing down those of them that haven't been realised. |
What is not done: access control vulnerabilities are not supported. There is a vision how to do it in next release. | |
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please quantify in terms of percentage. |
Project 100% Beta: it enables static analysis of Servlet and JSP-based web applications to search for input validation vulnerabilities. Documentation and Technical report created. Presentation is scheduled to OWASP EU Summit 2008, Portugal | |
3. What kind of help is required either from the Reviewers or from the OWASP Community? |
Perform 100% review | |
PART II | ||
Assessment Criteria |
||
QUESTIONS | ANSWERS | |
1. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Alpha Quality status? |
All done | |
2. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Beta Quality status? |
Add a common About Box | |
3. Having into consideration the OWASP Project Assessment Methodology which criteria, if any, haven’t been fulfilled in terms of Release Quality status? |
One-click build, Fortify Software's open source review and FindBugs | |
4. What kind of help is required either from the Reviewers or from the OWASP Community? |