Add OWASP Top Ten metadata

owasp-nest[bot] · arkid15r · web-flow · commit 94d3ca6aeb6c · 2025-10-11T00:43:18.000Z
Generated on 2025-10-11 by Arkadii Yakovets as part of the OWASP Schema initiative within OWASP Nest.
Repository: `OWASP/www-project-top-ten`

Co-authored-by: Arkadii Yakovets &lt;arkadii.yakovets@owasp.org&gt;
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,7 @@
+version: 2
+updates:
+  - package-ecosystem: github-actions
+    directory: /
+    schedule:
+      interval: weekly
+      time: '00:45'
diff --git a/.github/workflows/validate-owasp-metadata.yaml b/.github/workflows/validate-owasp-metadata.yaml
@@ -0,0 +1,27 @@
+name: Validate OWASP entity metadata
+
+on:
+  pull_request:
+    paths:
+      - '*.owasp.yaml'
+  push:
+    paths:
+      - '*.owasp.yaml'
+
+permissions:
+  contents: read
+
+concurrency:
+  cancel-in-progress: true
+  group: ${{ github.repository }}-${{ github.workflow }}-${{ github.ref }}
+
+jobs:
+  validate-metadata:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v5
+
+      - name: Validate metadata file
+        uses: owasp/nest-schema/.github/actions/validate@a733198b4a942eb12d3ee8629cd9e0d409b1b2b9
diff --git a/project.owasp.yaml b/project.owasp.yaml
@@ -0,0 +1,37 @@
+audience:
+  - builder
+  - defender
+community:
+  - name: project-top-10
+    platform: slack
+    url: https://owasp.slack.com/archives/C1QBMGU69
+leaders:
+  - name: Andrew van der Stock
+    email: vanderaj@owasp.org
+    github: vanderaj
+  - name: Brian Glas
+    email: brian.glas@owasp.org
+    github: infosecdad
+  - name: Neil Smithline
+    email: neil.smithline@owasp.org
+    github: Neil-Smithline
+  - name: Torsten Gigler
+    email: torsten.gigler@owasp.org
+    github: sslHello
+level: 4
+name: OWASP Top Ten
+pitch: The OWASP Top 10 is the reference standard for the most critical web application security risks. Adopting the OWASP Top 10 is perhaps the most effective
+  first step towards changing your software development culture focused on producing secure code.
+repositories:
+  - name: www-project-top-ten
+    url: https://github.com/OWASP/www-project-top-ten
+    description: OWASP Foundation Web Repository
+  - name: Top10
+    url: https://github.com/OWASP/Top10
+    description: Official OWASP Top 10 Document Repository
+tags:
+  - top10
+  - custom-tag-1
+  - custom-tag-2
+type: documentation
+website: https://owasp.org/www-project-top-ten
