This directory contains compliance tracking for OWASP Application Security Verification Standard 5.0.0.
- Compliant: Requirement is fully implemented
- Partial: Requirement is partially implemented
- N/A: Requirement is not applicable to this project
- (empty): Not yet assessed or not compliant
- 1: Basic security — every application should meet
- 2: Standard security — recommended for most applications
- 3: Advanced security — for critical applications
| Chapter | Title | Requirements |
|---|---|---|
| V1 | Encoding and Sanitization | 30 |
| V2 | Validation and Business Logic | 13 |
| V3 | Web Frontend Security | 31 |
| V4 | API and Web Service | 16 |
| V5 | File Handling | 13 |
| V6 | Authentication | 47 |
| V7 | Session Management | 19 |
| V8 | Authorization | 13 |
| V9 | Self‑contained Tokens | 7 |
| V10 | OAuth and OIDC | 36 |
| V11 | Cryptography | 24 |
| V12 | Secure Communication | 12 |
| V13 | Configuration | 21 |
| V14 | Data Protection | 13 |
| V15 | Secure Coding and Architecture | 21 |
| V16 | Security Logging and Error Handling | 17 |
| V17 | WebRTC | 12 |
Total requirements: 345