Lead security tester of the project to ensure all the below checklist tasks are performed and the status is updated before the Go/NoGo release call.
Owner : Mahesh Binayak
Task | Status | Completed date | Comments |
|---|---|---|---|
Security test approach (static and dynamic) is discussed with Architect | NA |
| Will plan for 0.11.0 |
All identified security testing has been performed | NA |
| Will plan for 0.11.0 |
Identified security bugs are discussed with Architect | NA |
| Will plan for 0.11.0 |
No reliability, vulnerabilities or hotspots issues open in sonar cloud | NA |
| Will plan for 0.11.0 |
databreachdetector scripts has been executed on the qa env where it’s signed off | NA | Will plan for 0.11.0 | |
Call out for independent 3rd party security testing if required | NA | Will plan for 0.11.0 |
Legend
Tasks:
The list of tasks against which the status needs to be updated. Since it’s a template, go ahead to add/modify as required
Status:
Go - Go ahead from the stake holder to release for a given stream
NoGo - Stake holder does not want the release to go for a given stream
In-progress - Work is in progress to provide final decision for a given stream
NA - Specific part of section is not applicable for this release for a given stream
Completed Date:
Enter the date when the Status was provided for a given stream
Comments:
Enter the comments as relevant for a given stream