-
As part of https://github.com/OWASP/owasp-masvs/issues/203 I was wondering: are there requirements within the ASVS regarding "the use of privacy enhancing technologies, that support data minimization,…
-
**Platform:**
Put the platform here for which you want to see the testcase (iOS, Android, etc.)
**Description:**
Describe the type of testcase that you are missing.
Kindly provide us new 1.2 ver…
-
There are two references in ASVS 4.0 that refer to Level 3 including non-repudiation as a requirement. These references are only in text but not in any actual requirements, as the one non-repudiation …
-
Move to github actions:
- [x] 1.Add external actions for markdown linting (on push) and link checking (on pr)
- [x] 2.Add composition of documents to github action
- [x] github and gitbook rende…
-
**Describe the issue**
We should reach out to Davide if he is interested writing about automation of the MASVS into the MSTG.
https://www.owasp.org/images/f/fb/V2_-_OWASP_Buscharest_Davide_Ciocci…
-
See Slack discussion: https://owasp.slack.com/archives/C1M6ZVC6S/p1600341837002800
Quick fix, add "(iOS only)" to the requirement, as this is only applicable for iOS (see documentation: https://dev…
-
Our mission statement says:
> Continuously publish the most mature patterns as an ebook
@dicortazar has produced an updated gitbook in April 2020. This is an interactive (clickable) version of our…
spier updated
3 years ago
-
The MASVS clearly states, that it is tailored to "whitebox" tests, where all the information (or at least most of it) is available to the evaluator:
> The recommended way of verifying compliance of…
-
**Is your feature request related to a problem? Please describe**
We have OWASP ASVS 3.1, 4.0.1. This might be helpful to also have OWASP MASVS (Mobile ASVS to the list). Not that we heavily use it, …
-
With Android GO edition, a lot will change in terms of the need for hardware. Time to get it into the general section of the MSTG! https://developer.android.com/about/versions/oreo/android-8.1#go