This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Project Manager Activity Reports/March 11 2013"
From OWASP
| Line 23: | Line 23: | ||
**[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project]: Test Reviewed. | **[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project]: Test Reviewed. | ||
**[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]: Test Reviewed. | **[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]: Test Reviewed. | ||
| − | **[https://www.owasp.org/index.php/OWASP_Codes_of_Conduct OWASP Codes of Conduct]: Reviewing | + | **[https://www.owasp.org/index.php/OWASP_Codes_of_Conduct OWASP Codes of Conduct]: Reviewing Under Legacy Process. |
**[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]: New Review Submission. | **[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]: New Review Submission. | ||
Revision as of 14:49, 11 March 2013
OWASP Project Manager Report
Work accomplished since February 11, 2013
- Project Numbers
- Active Projects: 136
- Inactive Projects: 67
- New Incubator Projects
- Project Announcements
- OWASP Periodic Table of Vulnerabilities Project: Working Group Forming.
- A working group is now forming under the leadership of James Landis to produce the 1.0 draft of the OWASP Periodic Table of Vulnerabilities.
- The goal of this project is to identify the ideal solution target for known web application vulnerability classes as a first step toward eliminating many classes of vulnerabilities altogether.
- OWASP iGoat Project V.2.0 Released!.
- Projects Under Review
- OWASP Cheat Sheets Project: Test Reviewed.
- OWASP Java HTML Sanitizer Project: Test Reviewed.
- OWASP Codes of Conduct: Reviewing Under Legacy Process.
- Xenotix XSS Exploit Framework: New Review Submission.
Project Manager Q1 2013 Objectives
- Continue grant funding research: Target $150 K in 2013.
- Finalize and Implement New Project Infrastructure processes.
- Coordinate OSS and OWASP Track documentation, guidelines, and processes as they apply to Global AppSec Conferences. (Ongoing for 2013)
- Increase Sales Force use for project management.
- Complete and Launch Projects page.
- Finalize the Project Leader Handbook.
Currently Working On
- Grant Opportunities Recap & Updates
- Guidebooks Proposal: We are still waiting for the first payment.
- Amount: $25,000
- ESAPI Proposal: This proposal is still under review.
- Amount: $25,000
- Google Grants: We have been awarded this grant. Working on developing strategies to implement/use these funds.
- Amount: $120,000 a year in Google Adwords Money
- ModSecurity Proposal: This proposal is now complete, and it has been submitted and accepted by DHS
- Amount: $30,000
- OWASP Static Analysis Tools Funding Opportunity: DHS
- There is a possibility of funding some of our Static Analysis tools.
- The interested party is a different department within the DHS.
- I am currently in talks with the DHS representative responsible for these initiatives.
- Total Grant Funds Awarded: $145,000 for 2013 so far.
- New Project Web Page
- The web page has been launched.
- It has replaced the OWASP Projects Page
- I am focusing on updating and maintaing our projects page at least twice a week.
- Projects Handbook 2013
- The Projects Handbook is now live.
- Users can download it on the Projects Web Page.
- FOSDEM
- FOSDEM went very well for the Event team in Brussels.
- The flyers went down very well.
- Simon's presentation on ZAP went very well according to attendees.
- The OWASP representatives at the event mentioned that many developers were not aware of OWASP.
- It is suggested we attend more events like these for outreach.
- Preparation for London BSides
- Fabio Cerullo and I had a conversation about flyers and Schwag for this event.
- We are still in the process of creating, and sourcing items for this.
- Security BSides London
- Guidebooks Project Management
- The Guidebooks Projects have now begun their work.
- We are using a collaborative Gantt chart tool to manage our work flow.
- Start Date: February 4th 2013
- End Date: June 4th 2013
Important Projects Division Outcomes and Discussion Points
- GPC Meeting: January 18 2013 Project Manager Report
- GPC Meeting: January 25 2013 Project Manager Report
- GPC Meeting: February 01 2013 Project Manager Report
- GPC Meeting: February 08 2013 Project Manager Report
- GPC members have decided to meet once every month to discuss project related issues/initiatives.
- I have scheduled the call, and all of the community is welcomed and encouraged to join in.
- I will add the meeting time and details to the Global OWASP Calendar.
- Meeting Date: March 08, 2013.
- I continue to developing a template, visual branding, and review criteria to meet this need as I feel it is a very important distinction to make between our projects.
