OWASP SAMM

A Software Assurance Maturity Model (SAMM) that provides an effective and measurable way for all types of organizations to analyse and improve their software security posture.

About OWASP SAMM

Get Involved

Involvement in the development of SAMM is actively encouraged! You do not have to be a security expert in order to help out. We have written some guidelines on our OWASPP SAMM website on how you can contribute to SAMM.

• https://owaspsamm.org/contributing/

Feedback

Please use the Github Issues for feedback:

• https://github.com/OWASP/samm/issues/new

Help us translate!

Are you fluent in another language? Can you help translate SAMM into that language? You can use Crowdin to do that!

• http://crowdin.net/project/owasp-samm

Project Resources

• online

• Subscribe to our newsletter

• Join our project slack channel

• https://owasp.org/slack/invite

• SAMM MeetUp

• how you can contribute to SAMM

• Join our SAMM channel

• @owaspsamm

• YouTube

Project Leaders

@media

Project Information

Latest Version

GitHub Release

Corporate Supporters

OWASP is a nonprofit foundation improving software security through open-source projects, global communities, and education. All resources are free and open to everyone.

OWASP, the OWASP logo, and Global AppSec are registered trademarks and AppSec Days, AppSec California, AppSec Cali, SnowFROC, OWASP Boston Application Security Conference, and LASCON are trademarks of the OWASP Foundation, Inc.