Feature #21779
closedIntegrate OWASP ESAPI for PHP
0%
Description
This is a feature request.
It would be nice to integrate OWASP ESAPI [1] for PHP in TYPO3 Core. ESAPI is "(...) a toolkit that help software developers guard against security-related design and implementation flaws". A nice datasheet that gives a short introduction on ESAPI is available at [2].
Currently, work on ESAPI for PHP [3] is in progress (alpha state). We need to wait until ESAPI is in stable form before starting an integration process.
This RFC is just to not forget about OWASP ESAPI for PHP.
[1] http://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API#tab=About
[2] http://www.owasp.org/images/8/81/Esapi-datasheet.pdf
[3] http://code.google.com/p/owasp-esapi-php/wiki/Welcome
(issue imported from #M12896)
Updated by Xavier Perseguers over 13 years ago
- Target version deleted (
4.6.0-beta1) - TYPO3 Version set to 4.7
Updated by Mathias Schreiber about 10 years ago
- Status changed from New to Needs Feedback
- Assignee set to Helmut Hummel
What do you think, Helmut?
Updated by Marcus Krause about 10 years ago
FYI: ESAPI for PHP is dead.
Nonetheless, the idea to have something like this is good.
Updated by Alexander Opitz about 9 years ago
- Status changed from Needs Feedback to New
- Target version set to 8 LTS
Updated by Helmut Hummel about 9 years ago
- Status changed from New to Closed
We will apply these step by step. No need to keep this meta ticket around
Updated by Benni Mack almost 5 years ago
- Sprint Focus changed from PRC to Needs Decision