This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Governance/ProjectProgramModels
Purpose
OWASP needs help from our community to define an OWASP Projects Program model that will meet the needs of our overall community. To do so we are engaging the community to discuss and flush out different options. We would like to have a vote on this to ensure that the community has a say in how the foundation moves forward. The new program model will take effect
The Options
Please feel free to add additional bullets to any of the cells. Please do not remove existing items.
| Option | 1 - Flagships get majority of resources to increase quality. | 2 - Develop two separate programs: Quality focused and Innovation focused | 3 - Community project review centric model |
| Summary Description |
Each individual project leader makes all decisions on sponsorship and recognition. Project leaders determine the requirements and placements of logos at their discretion
|
Anyone can pay to place a sponsorship logo on a project per a centralized policy.All contributors get name, email address, company (if desired), hyperlink (no logo) per leadership decision. No logos for just contributions of any sort
|
Projects list individual contributors on a dedicated acknowledgement page per project which is consistent across all project ( Name, email, company name). Financial sponsors only listed on a dedicated sponsor page on a centralized owasp webpage (e.g. no logos on projects)
|
| Can OWASP projects be directly sponsored by a company | Yes | Yes | No - however companies can sponsor the OWASP Foundation and the foundation can distribute funds to projects through items like summer of code / project reboot / etc |
| Are company logos placed within the OWASP project? | Yes | Yes | No |
| How are logos handled (placement, cost, logo size, etc) both on the wiki page and within any output/deliverable (e.g tool, documentation) |
At the sole discretion of the project leader |
By OWASP wide standard policy for project sponsorship. Logos would be included at a standard place for all projects. |
There are no project sponsors. Instead sponsors of the OWASP foundation are on a listed dedicated sponsorship page which may include the logo. |
| How are company contributions acknowledged? |
At the sole discretion of the project leader |
The same as individual contributors. However, since an individual can list their company name a company with many volunteers to a project would see their company name listed multiple times on the project acknowledgement page. |
The same as individual contributors. However, since an individual can list their company name a company with many volunteers to a project would see their company name listed multiple times on the project acknowledgement page. |
| How are individual contributions acknowledged |
At the sole discretion of the project leader |
All contributors will have their name, email address, company (if desired) listed on the contributors page for the project. |
All contributors will have their name, email address, company (if desired) listed on the contributors page for the project. |
| Positives of this approach |
|
|
|
| Negatives of this approach |
|
|
|
| Any other considerations |
|
|
|
Additional Comments
Use this space to provide additional comments on any of the existing text. For example, perhaps you disagree with something that is above. Please note your thoughts in this section.
