-
Android 7.0 and onward support key attestation with a few changes in android 8 as well. These should be added to the MSTG.
-
I just realised that we didn't describe MASVS 7.8 "In unmanaged code, memory is allocated, freed and used securely." in neither the Android nor iOS section of the MSTG.
I would propose to remove 7.…
-
In order to speed up the delivery of the epubs, it would be best if we can make sure that ebups are generated by travis as well.
For this we want to use the Owasp Books project.
-
Hi @coky-t ! Given your hard work on the translation of the MASVS & MSTG, I'dd like to get in touch with you. Are you on OWASP Slack? and otherwise: can you mail me at jeroen.willemsen@owasp.org?
-
Noticed that in https://github.com/OWASP/owasp-mstg/blob/master/Document/0x06f-Testing-Local-Authentication.md a reference to the OWASP MASVS is incorrect:
V4.8: "Biometric authentication, if any, …
-
We need to improve the versioning and release strategy (git tags and releases) of the mstg and masvs to make them easier to use by other organisations.
- [x] 1. have a clear versioning strategy for…
-
**Platform:**
Android
**Description:**
Hi, i can't find the link to "Testing Input Validation and Sanitization". I'm looking for all the github, can you help me?
-
We need to update the leanpub and gitbook on every release at least...
- [x] Gitbook (will be done by hand by Sven every now and then)
- [x] Leanpub (will be done with api-client after release)
-
We need to get the Q/A done on the following delta, (to speed up the review process):
https://github.com/OWASP/owasp-mstg/compare/55ade23b765aeb09f945583ddd012db7891969ed...master
It covers:
-…
-
I have a question regarding a requirement from V2:
> 2.4 The keyboard cache is disabled on text inputs that process sensitive data.
Is this requirement practically enforceable on all major mobil…