Hi,
I'd love to get this list's feedback on a new document from OWASP.
OWASP Secure Software Development Contract Annex (http://www.owasp.org/documentation/legal.html)
Everyone involved with a software contracting relationship of any kind, even within a single application team, should have a discussion about security. This document is a *starting point* and is intended to facilitate that discussion.
Please let the team know if this document is helpful, or if you don't like the model. We're actively trying to improve the document.
--Jeff
