OWASP Education and Training Committee update
Traditionally OWASP offered in-person instructor led trainings as a part of Global AppSec Conferences which take place two or three times a year. However the OWASP Foundation gets requests for
Advisory on Software Bill of Materials and Real-time Vulnerability Monitoring for Open-Source Software and Third-Party Dependencies
The OWASP Foundation, in collaboration with the Cyber Security Agency (CSA) of Singapore, presents this advisory on using Software Bill of Materials (SBOM) for enhanced vulnerability management, highlighting OWASP CycloneDX—a format standardized
OWASP Juice Shop leadership changes & contributor recognition
OWASP Juice Shop proudly announces long-time contributor Jannik Hollenbach as co-project lead effective immediately! Additionally, we are enhancing and simplifying our contributor engagement & recognition. Read on to learn more
Lifecycle events are part of the secure supply chain
A new OWASP project – Common Lifecycle Enumeration – aims to standardize encodings of product lifecycle events, such as end-of-life, end-of-support and others. The specification will become an ECMA International
A workaround for OWASP Foundation emails being blocked by Microsoft Office 365
Over the last several months, OWASP, particularly the owasp.com domain, has been blocked from sending messages to tenants of the Microsoft Office 365 platform or those using Microsoft Defender for
OWASP Email Problems (and solutions)
Recently, Google, Microsoft, and Yahoo and other major email providers have been implementing stricter email authentication controls. This is a good thing, as it helps to reduce the amount of