•

Any resources in favor of FLOSS regarding SW quality, sec etc ?

OWASP Foundation, the Open Source Foundation for Application Security | OWASP Foundation

https://owasp.org/

OWASP Foundation, the Open Source Foundation for Application Security on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

OWASP Foundation, the Open Source Foundation for Application Security | OWASP Foundation

Ideally please provide tangible data with figures...

I will update this thread with some findings:

OSS-RISK-6 : Untracked Dependencies
- https://github.com/OWASP/www-project-open-source-software-top-10/blob/main/0-1-risks/OSS6-Untracked-Dependencies.md
Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite
- https://www.bodden.de/pubs/dph+21identifying.pdf

0 comments