Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

The OWASP (Open Web Application Security Project) Top 10 report is a vital resource for developers, security analysts, and IT managers aiming to enhance the security of web applications. The OWASP Top 10 represents the most critical security risks to web applications, providing a prioritized list that helps teams focus on the most severe threats.

What the Report Shows

The report displays detailed evidence collected from SonarQube, a leading code quality and security analysis tool. The data includes:

  1. ID: A unique identifier for each risk, corresponding to the OWASP Top 10 categories.

  2. Name: The specific name of the risk, which provides a quick reference to the type of threat.

  3. Category Rating: An evaluation of the severity and potential impact of the risk. Ratings are often categorized (e.g., A, E) to help prioritize mitigation efforts.

  4. Vulnerabilities: A breakdown of the number of vulnerabilities detected, categorized into various types:

  5. Hotspots to Review: Specific areas of the code flagged for further manual inspection, helping to identify potential security issues that automated analysis might miss.

You can create Jira issues based on this vulnerabilities and hotspots as you could from issues breakdown.

image-20240723-103924.png

image-20240723-104008.png

  • No labels