Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/inspektre/asvs-graph
ASVS Knowledge Graph built upon OWASP ASVS
https://github.com/inspektre/asvs-graph
Last synced: about 1 month ago
JSON representation
ASVS Knowledge Graph built upon OWASP ASVS
- Host: GitHub
- URL: https://github.com/inspektre/asvs-graph
- Owner: inspektre
- Created: 2022-06-18T05:02:11.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2023-01-08T22:11:37.000Z (about 2 years ago)
- Last Synced: 2023-03-05T17:39:52.062Z (almost 2 years ago)
- Language: TypeScript
- Size: 40.7 MB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# ASVS Version 4.0.3
- Copy the latest version of ASVS JSON formatted file [from here](https://github.com/OWASP/ASVS/blob/master/4.0/docs_en/OWASP%20Application%20Security%20Verification%20Standard%204.0.3-en.json)
## CSP Headers from Nginx
- In order to use GraphQL Playground on `https://asvs.inspektre.com`, The following CSP Headers are required to load GraphQL Playground.
- GraphQL Playground has been enabled temporarily but will be removed in the future iterations of ASVS Graph.
- Please note: Introspection has been disabled. The schema is available for examination within this Repo eitherway.
```
add_header Content-Security-Policy "default-src 'none'; connect-src https://asvs.inspektre.com; font-src https://fonts.gstatic.com; img-src https://cdn.jsdelivr.net; script-src 'unsafe-inline' https://cdn.jsdelivr.net/npm/@apollographql/[email protected]/build/static/js/middleware.js; style-src 'unsafe-inline' https://cdn.jsdelivr.net/npm/@apollographql/[email protected]/build/static/css/ https://fonts.googleapis.com/;" always;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
add_header X-Served-By "inspektre" always;
```