Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

5.3 description contradicts table #619

Closed
jsulinski opened this issue Mar 1, 2019 · 2 comments
Closed

5.3 description contradicts table #619

jsulinski opened this issue Mar 1, 2019 · 2 comments
Assignees
@vanderaj
Milestone
4.0

Comments

@jsulinski
Copy link
Contributor

https://github.com/OWASP/ASVS/blob/master/4.0/en/0x13-V5-Validation-Sanitization-Encoding.md#v53-output-encoding-and-injection-prevention-requirements

Erroneous copy: "Many of these items are not directly penetration testable (L1), and so although they are critical to the security of any application, they are L2."

Relevant commits:
88638d8
ef292d4
be2d413
@vanderaj
Copy link
Member

vanderaj commented Mar 2, 2019

Fixed in 4.0.1. I had to add a missing credit to the frontispiece, so thank you for this in such a timely fashion!

@vanderaj vanderaj self-assigned this Mar 2, 2019
@vanderaj vanderaj added the QA label Mar 2, 2019
@vanderaj vanderaj added this to the 4.0 milestone Mar 2, 2019
@vanderaj
Copy link
Member

vanderaj commented Mar 2, 2019

Please download the standard again, and you'll have the corrected version.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@vanderaj vanderaj

Labels
None yet
Projects
None yet
Milestone
4.0
Development

No branches or pull requests
2 participants
@jsulinski @vanderaj