search

OWASP / ASVS

Application Security Verification Standard
Creative Commons Attribution Share Alike 4.0 International
2.69k stars 657 forks source link

proposal: merge 12.3.6 to 10.3.2 #1471

Open elarlang opened 1 year ago

elarlang commented 1 year ago

Related requirements:

# Description L1 L2 L3 CWE
12.3.6 Verify that the application does not include and execute functionality from untrusted sources, such as unverified content distribution networks, JavaScript libraries, node npm libraries, or server-side DLLs. 829
10.3.2 [MODIFIED] Verify that the application only loads or executes code, modules, content or plugins from sources not under the application's direct control/protection if it employs integrity protections, such as code signing. 829

Proposal: merge 12.3.6 to 10.3.2

jmanico commented 1 year ago

Agreed

tghosth commented 1 year ago

Waiting for #1427

tghosth commented 1 year ago

@set-reminder 3 weeks @tghosth to look at this

octo-reminder[bot] commented 1 year ago

Reminder Wednesday, January 18, 2023 12:00 AM (GMT+01:00)

@tghosth to look at this

octo-reminder[bot] commented 1 year ago

🔔 @tghosth

@tghosth to look at this