Versions Compared

Old Version 10

changes.mady.by.user Ed Cable

Saved on

compared with

New Version Current

changes.mady.by.user Nkep Kerlyn

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Discuss progress of projects and identify any blockers

Recording

https://us02web.zoom.us/rec/share/-powIGVJ9qfcNTrvsZ3HzQUwod7oFb2t0hvpDmbQJDxWIn5EhFnLY1PdNuKul65n.K70Bw_L84dYpP2DG?pwd=gjVVxpETuSSGGDD_11dts1CccQimva5U


Discussion items

Time




45 minutes

updates & blockers



...

  • What did you accomplish this past week?

    • Worked on fixing fineract issues.

    • Tested "create group" and , "closing entries" and “client” API's.

    • Tested for response manipulation, CSRF, Business Logic errors.

    • Had a meet with mentor discussing progress.

  • What will you do this upcoming week?

    • test remaining apis

    • configure mobile wallt to proxy tool - test for auth issues

    • Next week, my plan is to test the remaining APIs. The first step will be to extract all the API URL's and their parameters from the web app, create users with different privileges, and then use automated workflows from Trickest to test for OWASP Top 20.

  • What obstacles are impeding your progress?

    • None

  • Would you like help from some mentor for this task? 

    • Not as of now

  • Ed to get scall scheduled with godfrey and security team.

...

  • What did you accomplish this past week?

    • Implemented Static application security testing for community app - using codeQL - . CodeQL picked up a couple items for of code patterns that could cause potential vulnerabilities.

      Web app

    • Had a meeting with mentor to review the progress so far.

  • What will you do this upcoming week?

    • Begin API testing in the following week, 2 endpoints each day for OWASP - picking these endpoints from swagger documentation

  • What obstacles are impeding your progress?

    • None

  • Would you like help from some mentor for this task? 

    • Not at the moment.

Elijah Okello

  • What did you accomplish this past week?

    • Working on getting different components running

    • Received an azure vm instance - clustered to run the softwares that are needed

    • Managed to set up Fineract on K8s cluster - swapped out images to public one - not connecting because not tailored for helm chart.

    • Going to start building real package as wait for help from Avik and

  • What will you do this upcoming week?

  • What obstacles are impeding your progress?

    • Few issues asking private container images for Fineract and PH-EE

    • Manage

  • Would you like help from some mentor for this task? 

...