Basic Security Tests

Registered by Malini Kamalambal on 2013-05-01

Create a be basic automated security tests to run against the QA cluster, and set up a farm to run them for every submitted patch, triggered from Jenkins.

NOTE: automated security tests are no substitute for proper auditing of releases.

Could include hand-written penetration, fuzz tests, etc.

May also include generic vulnerability scanning.

TODO: figure out ways to bake manual pen testing into our process if needed, using tools such as https://code.google.com/p/zaproxy/

Blueprint information

Status:
Not started
Approver:
Kurt Griffiths
Priority:
Medium
Drafter:
None
Direction:
Needs approval
Assignee:
None
Definition:
Discussion
Series goal:
None
Implementation:
Not started
Milestone target:
None

Related branches

Sprints

Whiteboard

Do in Juno

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information 
Everyone can see this information.