We used Asana as our task tracking tool. We have already sent you invites for joining our team on Asana. So, to view the Asana Task links kindly accept our invitation. Detailed description of our tasks on weekly basis is documented below:
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Setup environment | Follow tutorials to get an idea how Sequelize work with node and express | |
| Create Tasks | Pick a task tracking tool, create tasks, track them | |
| Figure out authentication with Github | Done | Asana Task |
| Setup hooks to receive events | Done | Asana Task |
| Figure out how to keep code updated | Done | Asana Task |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Figure out Registration of Local Hosted Bot | Done | Asana Task |
| Forward Event to Machine that hosts the code | Done | Asana Task |
| Design the code Archietcture of Server Hosted Bot | Done | Asana Task |
| Design the code Archietcture of Local Hosted Bot | Done | Asana Task |
| Handle events received from GitHub | Done | Asana Task |
| Receive Events from Server Hosted Bot at Local Hosted Bot | Done | Asana Task |
| Integrate shell scripts to update code at Local Hosted Bot | Done | Asana Task |
| Figure out Jenkins to build the code when the code is updated at Local Hosted Bot | Done | Asana Task |
| Write Ant Script to automatically build code using Jenkins | Done | Asana Task |
| Create and deploy target application to be tested | Done | Asana Task |
| Authenticate GitHub Integration using Private Key | Done | Asana Task |
| Post Comment on Pull Request Using Mock Data | Done | Asana Task |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Integrate ZAP attack tool and mock ZAP service | Done | Asana Task |
| Work to improve code update scripts | Done | Asana Task |
| Design Database at Local Instance to store results of Penetration Testing | Done | Asana Link |
| Filter ZAP attack results based on Event Type | Done | Asana Task |
| Implement function to return unique vulnerabilities in past 5 commits for "email_request" event | Done | Asana Task |
| Sending Response back to Heroku Hosted Bot from Local Hosted Bot | Done | Asana Link |
| Receive Response from Local Hosted Bot | Done | Asana Link |
| Utilize nodemailer to send email reports | Done | Asana Link |
| Post vulnerabilities specific to a Pull request | Done | Asana Link |
| Format the vulnerability list before commenting on pull request | Done | Asana Link |
| Create a form for users to register for email service | Done | Asana Link |
| Write selenium Tests for Robocop | Done | Asana Link |
| Create a Worksheet.md and add Asana tasks to the markdown | Done | Asana Link |
| Create BOT.md for BOT milestone | Done | Asana Link |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Choose another service to integrate | Done | Asana Task |
| Connect with ZAP | Done | Asana Task |
| String Formatting for email and comment/issue text | Done | Asana Task |
| Filter vulnerabilities coming from snyk | Done | Asana Task |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Integrate second service | Done | Asana Task |
| Modify report format according to different services | Done | Asana Task |
| Change the response that is sent back to heroku deployed bot to send both SNYK as well as ZAP vulnerabilities | Done | Asana Task |
| Modify response of filtered vulnerabilities to accommodate results from both zap and snyk | Done | Asana Task |
| Modify database to accommodate new service (snyk) | Done | Asana Task |
| Create worksheet.md to track tasks for service milestone | Done | Asana Task |
| Make screencast for service milestone | Done | Asana Task |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Better formatting of email | Done | Asana Task |
| Figure out installation of mysql properly using ansible | Done | Asana Task |
| Provisioning of ZAP and snyk services | Done | Asana Task |
| Set up all the environment variables using ansible | Done | Asana Task |
| Provisioning of Jenkins, java, ant etc for local instance | Done | Asana Task |
| Deliverable | Item/Status | Issues/Tasks |
|---|---|---|
| Make an Ansible script to install all dependencies | Done | Asana Task |
| Remove hard coded passwords and keys from ansible script and use ansible server's environment variables | Done | Asana Task |
| Refactored code to remove conf.json in local instance to use urls as environment variables | Done | Asana Task |
| Deploy local instance on google compute | Done | Asana Task |