Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities, includes a list of practice groups and informational examples and references in Microsoft Excel format.
If you are planning on using this information to integrate into your tools/systems, you may find it easier to use the JSON format of the SSDF V1.0 Practice Groups and Tasks.
- Download SSDF V1.0 Practice Groups and Tasks in JSON format
- Learn more about SSDF at https://csrc.nist.gov/Projects/ssdf.
Given the on-going Federal initiatives and conformance requirements, We would love to hear from you. Create an issue and let us know how you are preparing in your organization. If you have any questions, please feel free to reach out to us.
We have lots of ideas and thoughts around this topic and will share here as well.
If you would like to contribute to this project, feel free to fork and create PR if you can. Otherwise, create an issue with your thoughts and ideas.