Suggest updating benchmark capability to use latest ASVS

DefectDojo / django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.

https://defectdojo.com

BSD 3-Clause "New" or "Revised" License

3.57k stars 1.51k forks source link

Suggest updating benchmark capability to use latest ASVS #7404

Open twright-0x1 opened 1 year ago

twright-0x1 commented 1 year ago

It appears that DefectDojo supports an outdated version of the ASVS: 3.1 (see https://documentation.defectdojo.com/usage/features/#benchmarks).

With the release of ASVS 5 quickly approaching, this feature request is to bring the ASVS benchmark up to date.

manuel-sommer commented 6 months ago

Could you make a PR @twright-0x1 ?

iman4000 commented 3 months ago

I like to work on this issue.

and another issue is that I see a maturity diagram for this in other tools. it would be amazing if we have this pentagon diagram on an overview page of each project separately.

Can you guide me how can I start this?