This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP O2 Platform/Sub-Projects/OSSAD"
(→Project Details) |
|||
| Line 17: | Line 17: | ||
=== Project Details === | === Project Details === | ||
| − | '''What is OSSAD''' | + | '''What is OSSAD?''' |
OSSAD will be a free, open source, software security static analysis tool and is architected to support any programming language that has an EBNF. It is for developers who know little or nothing about application security. | OSSAD will be a free, open source, software security static analysis tool and is architected to support any programming language that has an EBNF. It is for developers who know little or nothing about application security. | ||
| Line 28: | Line 28: | ||
* What a contributor can do to help | * What a contributor can do to help | ||
| − | The project is at a nascent state and the goal is to have a working Java/JSP implementation in the 1st half of 2010 with other programming languages to | + | The project is at a nascent state and the goal is to have a working Java/JSP implementation in the 1st half of 2010 with other programming languages to follow. |
'''Schedule''' | '''Schedule''' | ||
| Line 36: | Line 36: | ||
* Do a first pass clean up of the source code | * Do a first pass clean up of the source code | ||
* Organize the source code structure | * Organize the source code structure | ||
| − | * Upload to www.o2-ounceopen.com | + | * Upload to www.o2-ounceopen.com |
* Release a new version of the project documentation | * Release a new version of the project documentation | ||
'''Contact''' | '''Contact''' | ||
| − | Any comments/questions are welcome: [email protected] | + | Any comments/suggestions/questions are welcome: [email protected] |
Thank you. | Thank you. | ||
Revision as of 03:57, 16 November 2009
OSSAD stands for One Security Static Analyzer per Developer
Documentation
- https://www.o2-ounceopen.com/files-binaries-source-and-demo/ossad/OSSAD_Security-Static-Analysis-tool_v-0.15Draft.odt
- https://www.o2-ounceopen.com/files-binaries-source-and-demo/ossad/OSSAD_Security-Static-Analysis-tool_v-0.15Draft.pdf
Copyright
The current version has been developed by Stephen Craig Evans who assigned the copyright to OWASP.
"I assign the copyright of the OSSAD static analysis tool to OWASP and I will release its code under Apache 2.0 (Open Source license) and the documents under Creative Commons 3.0 License."
Stephen Craig Evans - November 15, 2009
Project Details
What is OSSAD?
OSSAD will be a free, open source, software security static analysis tool and is architected to support any programming language that has an EBNF. It is for developers who know little or nothing about application security.
Please read the project documentation, which details:
- Motivation
- Strategy
- Architecture
- Current progress
- What a contributor can do to help
The project is at a nascent state and the goal is to have a working Java/JSP implementation in the 1st half of 2010 with other programming languages to follow.
Schedule
Nov 16-29:
- Fix up this page
- Do a first pass clean up of the source code
- Organize the source code structure
- Upload to www.o2-ounceopen.com
- Release a new version of the project documentation
Contact
Any comments/suggestions/questions are welcome: [email protected]
Thank you.
go back to the main OWASP O2 Platform page
