Lead security tester of the project to ensure all the below checklist tasks are performed and the status is updated before the Go/NoGo release call.
Owner : Mahesh Binayak
Task | Status | Completed date | Comments |
|---|---|---|---|
Security test approach (static and dynamic) is discussed with Architect |
|
|
|
All identified security testing has been performed |
|
|
|
Identified security bugs are discussed with Architect |
|
|
|
No reliability, vulnerabilities or hotspots issues open in sonar cloud |
|
|
|
databreachdetector scripts has been executed on the qa env where it’s signed off | |||
Call out for independent 3rd party security testing if required |
Legend
Tasks:
The list of tasks against which the status needs to be updated. Since it’s a template, go ahead to add/modify as required
Status:
Go - Go ahead from the stake holder to release for a given stream
NoGo - Stake holder does not want the release to go for a given stream
In-progress - Work is in progress to provide final decision for a given stream
NA - Specific part of section is not applicable for this release for a given stream
Completed Date:
Enter the date when the Status was provided for a given stream
Comments:
Enter the comments as relevant for a given stream