This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
AppSecNews Curation
From OWASP
Revision as of 18:19, 9 August 2013 by MichaelCoates (talk | contribs) (Created page with "=Purpose= Provide information on curation of the OWASP App Sec News RSS = Main OWASP RSS Feed Link = See [[Application_Security_News | OWASP A...")
Purpose
Provide information on curation of the OWASP App Sec News RSS
Main OWASP RSS Feed Link
Curators
List of RSS news feed curators: To determine who posted a story you can check the individual RSS streams that feed into the OWASP RSS feed
- OWASP Blog - multiple authors
- Michael Coates
Guidance for Story Inclusion
- Relevant - Related to AppSec OR OWASP
- No product/company pitches - Not a story touting a product, service, or company
- In general, even an ad or solicitation at the bottom of an article will eliminate the article from inclusion
- Focus on application security
- Not related to network security or OS security
- Not related to malware unless AppSec specific
- Quality - Well written (Even introductory material if written interestingly)
- In some cases quality of writing is not a concern if the material is new and novel
- Primary Source - When possible link to the original story, not someone rehashing or relinking
- Broad Impact - Avoid items that apply to a very specific technology and situation (e.g. implementing validation with Spring annotations) – unless there’s a broader reason.
- Not an exploit / 0-day News Stream for particular sites / companies
- No exploits of specific apps / site
- Broad reaching weaknesses in frameworks, libraries, etc are ok to inlcude
Technology
OWASP uses feedblitz to build the RSS stream which splices together multiple inbound RSS streams from vetted curators
Become a Curator
Please contact [email protected]
- We'll review your RSS feed for the past 3 months to determine if it is a good fit based on the above criteria
- Previous involvement and standing within OWASP is required