Skip to content

Commit 027bb19

Browse files
JeffreyShranJeffreyShran
authored
Merge pull request #20 from OWASP/nest/owasp-thick-client-application-security-verification-standard-metadata
Add OWASP Thick Client Application Security Verification Standard metadata
2 parents 47b4448 + 3a56919 commit 027bb19

File tree

3 files changed

+56
-0
lines changed

3 files changed

+56
-0
lines changed

.github/dependabot.yml

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,7 @@
1+
version: 2
2+
updates:
3+
- package-ecosystem: github-actions
4+
directory: /
5+
schedule:
6+
interval: weekly
7+
time: '00:45'

.github/workflows/validate-owasp-metadata.yaml

Lines changed: 27 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,27 @@
1+
name: Validate OWASP entity metadata
2+
3+
on:
4+
pull_request:
5+
paths:
6+
- '*.owasp.yaml'
7+
push:
8+
paths:
9+
- '*.owasp.yaml'
10+
11+
permissions:
12+
contents: read
13+
14+
concurrency:
15+
cancel-in-progress: true
16+
group: ${{ github.repository }}-${{ github.workflow }}-${{ github.ref }}
17+
18+
jobs:
19+
validate-metadata:
20+
runs-on: ubuntu-latest
21+
22+
steps:
23+
- name: Checkout code
24+
uses: actions/checkout@v5
25+
26+
- name: Validate metadata file
27+
uses: owasp/nest-schema/.github/actions/validate@a733198b4a942eb12d3ee8629cd9e0d409b1b2b9

project.owasp.yaml

Lines changed: 22 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,22 @@
1+
audience:
2+
- builder
3+
leaders:
4+
- name: Dave Hanson
5+
email: [email protected]
6+
level: 2
7+
license:
8+
- CC-BY-SA-4.0
9+
name: OWASP Thick Client Application Security Verification Standard
10+
pitch: The OWASP Thick Client Application Security Verification Standard (TASVS) Project aims to establish an open standard for securing thick client applications. This project provides a comprehensive framework for designing, building, and testing technical application security controls. The TASVS Project fills the gap between the OWASP Application Security Verification Standard (ASVS) for web applications and the Mobile Application Security Verification Standard (MASVS). While the MASVS can be applied to thick client testing, it is not an ideal fit. The TASVS Project seeks to create a more suitable standard for these scenarios.
11+
repositories:
12+
- name: www-project-thick-client-application-security-verification-standard
13+
url: https://github.com/OWASP/www-project-thick-client-application-security-verification-standard
14+
description: OWASP Thick Client Application Security Verification Standard
15+
tags:
16+
- TASVS
17+
- ASVS
18+
- MASVS
19+
- SAMM
20+
- OWASP
21+
type: documentation
22+
website: https://owasp.org/www-project-thick-client-application-security-verification-standard

0 commit comments

Comments
 (0)