-
Priority Rationale: Following GitHub presence and adopting best practices will improve community engagement.
-
**Description:**
OWASP SAMM (Software Assurance Maturity Model) relies on contributions from a diverse group, including those working within commercial organizations. To ensure the sustainability and…
-
Raised by Roberto Polli in Slack https://owasp.slack.com/archives/C01EQUM5TGS/p1617837141004300:
Hi there! I'm trying to reference SAMM entities (activities & Co) into #dsomm yaml files. I thought th…
-
**Description:**
From Rainer Haffman in Slack - https://owasp.slack.com/archives/C0VF1EJGH/p1652302629341629
At the beginning, when I started with SAMM, I couldn't understand how the points are given…
-
https://owasp.slack.com/archives/C0VF1EJGH/p1551911973003900
What's the rationale behind two "streams" in each SAMM 2.0 category? Is it just a logical categorization? One stream doesn't take preceden…
-
From what I can see in the rating calculation, it does not matter whether I have a good coverage in a level-1 activity of a specific stream, or a level-3 activity. Also, higher-level activities do not…
-
https://owaspsamm.org/model/governance/education-and-guidance/stream-b/
https://github.com/OWASP/samm/blob/master/Supporting%20Resources/v2.0/Datamodel/Datafiles/Activity%20G-EG-2-B.yml
Replace:
…
-
https://github.blog/2022-02-14-include-diagrams-markdown-files-mermaid/
-
-
As an organisation, I would be interested to see how my BSIMM score compares to OWASP SAMM or other models so that I understand my estimated maturity level for different maturity models. This could be…