From 06123cccd1498e0f990b6367108b13c8dc3f246e Mon Sep 17 00:00:00 2001
From: "owasp-nest[bot]" <204073339+owasp-nest[bot]@users.noreply.github.com>
Date: Thu, 25 Sep 2025 04:28:23 +0000
Subject: [PATCH 1/2] Add OWASP Web Security Testing Guide metadata

Generated on 2025-09-25 by Arkadii Yakovets as part of the OWASP Schema initiative within OWASP Nest.
Repository: `OWASP/www-project-web-security-testing-guide`

Co-authored-by: Arkadii Yakovets <arkadii.yakovets@owasp.org>
---
 .../workflows/validate-owasp-metadata.yaml    | 28 +++++++++++++++++++
 project.owasp.yaml                            | 28 +++++++++++++++++++
 2 files changed, 56 insertions(+)
 create mode 100644 .github/workflows/validate-owasp-metadata.yaml
 create mode 100644 project.owasp.yaml

diff --git a/.github/workflows/validate-owasp-metadata.yaml b/.github/workflows/validate-owasp-metadata.yaml
new file mode 100644
index 0000000..39aac6c
--- /dev/null
+++ b/.github/workflows/validate-owasp-metadata.yaml
@@ -0,0 +1,28 @@
+name: Validate OWASP entity metadata
+
+on:
+  pull_request:
+    paths:
+      - '*.owasp.yaml'
+  push:
+    paths:
+      - '*.owasp.yaml'
+
+concurrency:
+  cancel-in-progress: true
+  group: ${{ github.repository }}-${{ github.workflow }}-${{ github.ref }}
+
+jobs:
+  validate-metadata:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Validate metadata file
+        # We want to use the latest version of the action which lives in the
+        # `owasp/nest-schema` repository subdirectory and doesn't have a separate release process.
+        # This approach simplifies the workflow support however
+        # you can change it to use a specific SHA version if needed.
+        uses: owasp/nest-schema/.github/actions/validate@v0  # NOSONAR
diff --git a/project.owasp.yaml b/project.owasp.yaml
new file mode 100644
index 0000000..74cfd3e
--- /dev/null
+++ b/project.owasp.yaml
@@ -0,0 +1,28 @@
+audience:
+  - breaker
+  - builder
+leaders:
+  - name: Elie Saad
+    email: elie.saad@owasp.org
+  - name: Rick Mitchell
+    email: rick.mitchell@owasp.org
+    github: kingthorin
+level: 4
+license:
+  - CC-BY-SA-4.0
+name: OWASP Web Security Testing Guide
+pitch: The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
+repositories:
+  - name: www-project-web-security-testing-guide
+    url: https://github.com/OWASP/www-project-web-security-testing-guide
+    description: The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security
+      professionals.
+  - name: wstg
+    url: https://github.com/OWASP/wstg
+    description: The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
+tags:
+  - otg
+  - wstg
+  - custom-tag-1
+type: documentation
+website: https://owasp.org/www-project-web-security-testing-guide

From 5c5e06db9ab8619971d87a02f73c5c07589f55d6 Mon Sep 17 00:00:00 2001
From: kingthorin <kingthorin@users.noreply.github.com>
Date: Thu, 25 Sep 2025 17:14:16 -0400
Subject: [PATCH 2/2] Tweaks and additions

Signed-off-by: kingthorin <kingthorin@users.noreply.github.com>
---
 project.owasp.yaml | 20 ++++++++++++++++++--
 1 file changed, 18 insertions(+), 2 deletions(-)

diff --git a/project.owasp.yaml b/project.owasp.yaml
index 74cfd3e..f376759 100644
--- a/project.owasp.yaml
+++ b/project.owasp.yaml
@@ -4,9 +4,18 @@ audience:
 leaders:
   - name: Elie Saad
     email: elie.saad@owasp.org
+    github: ThunderSon
   - name: Rick Mitchell
     email: rick.mitchell@owasp.org
     github: kingthorin
+community:
+  - platform: slack
+    url: https://app.slack.com/client/T04T40NHX/CJ2QDHLRJ
+    description: '#testing-guide on OWASP slack'
+logo:
+  - small: "https://github.com/OWASP/wstg/blob/master/.github/www/assets/202006-owasp_material/Github/Github%20-%20Shield%20400x400%20-%20Gradient%20%E2%80%93%201.png"
+    medium: "https://github.com/OWASP/wstg/blob/master/.github/www/assets/202006-owasp_material/Github/Github%20-%20Shield%20400x400%20-%20Gradient%20%E2%80%93%201.png"
+    large: "https://github.com/OWASP/wstg/blob/master/.github/www/assets/202006-owasp_material/Github/Github%20-%20Shield%20400x400%20-%20Gradient%20%E2%80%93%201.png"
 level: 4
 license:
   - CC-BY-SA-4.0
@@ -17,12 +26,19 @@ repositories:
     url: https://github.com/OWASP/www-project-web-security-testing-guide
     description: The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security
       professionals.
+    code_of_conduct: https://github.com/OWASP/wstg/blob/master/CODE_OF_CONDUCT.md
   - name: wstg
     url: https://github.com/OWASP/wstg
     description: The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
+    code_of_conduct: https://github.com/OWASP/wstg/blob/master/CODE_OF_CONDUCT.md
+    contribution_guide: https://github.com/OWASP/wstg/blob/master/CONTRIBUTING.md
 tags:
-  - otg
   - wstg
-  - custom-tag-1
+  - appsec
+  - pentest
+  - otg
 type: documentation
 website: https://owasp.org/www-project-web-security-testing-guide
+social_media:
+  - platform: x
+    url: https://x.com/owasp_wstg