-
I have a question regarding a requirement from V2:
> 2.4 The keyboard cache is disabled on text inputs that process sensitive data.
Is this requirement practically enforceable on all major mobil…
-
We need to get the Q/A done on the following delta, (to speed up the review process):
https://github.com/OWASP/owasp-mstg/compare/55ade23b765aeb09f945583ddd012db7891969ed...master
It covers:
-…
-
We need to improve the versioning and release strategy (git tags and releases) of the mstg and masvs to make them easier to use by other organisations.
- [x] 1. have a clear versioning strategy for…
-
Test case for "All third party components used by the mobile app, such as libraries and frameworks, are identified, and checked for known vulnerabilities." is missing in iOS and Android Chapter
-
Need proper admin rights for MASVS repo.
Goal:
- Travis to create PDF after patches
- To chain Gitbook to OWASP repo
-
"Application Security Verification - The technical assessment of an application against the OWASP MASVS" -> "Application Security Verification - The technical assessment of an application against the …
-
Can we rewrite `| **7.1** | The app is signed and provisioned with valid certificate. | ✓ | ✓ |` to `| **7.1** | The app is signed and provisioned with valid certificate, of which the private key is p…
-
Hi I,ve finished the translation to spanish of the Mobile_App_Security_Checklist.xlsx
Please give me an email address to send it to You so you can publish it here. Thanks.
-
Created pull request to contribute Russian translation.
-
> The clipboard is deactivated on text fields that may contain sensitive data.
No, please don't. That prevents many password managers from working (not all of them support Android 8's new APIs). So…