Contribute to the OWASP AI Exchange
Β
...
The OWASP projects are an open source effort, and we enthusiastically welcome all forms of contributions and feedback.
Participate in Content Development
- π₯ Send your suggestion to the project leader.
- π Join
#project-ai-communityin our Slack workspace. - π£οΈ Discuss with the project leader how to become part of the writing group.
- π‘Propose your concepts, or submit an issue.
- π Fork our repo and submit a Pull Request for concrete fixes (e.g. grammar/typos) or content already approved by the core team.
- π Showcase your contributions.
- π Identify an issue or fix it on a Pull Request.
- π¬ Provide your insights in GitHub Discussions.
- π Pose your questions.
What to Avoid
We value every contribution to our project, but it’s important to be aware of certain guidelines:
- Avoid Advertising: The OWASP AI projects should not be a medium for promoting commercial tools, companies, or individuals. The focus should be on free and open-source tools when discussing the implementation of techniques or tests. While commercial tools generally aren’t included, they may be mentioned in specific, relevant instances.
- Refrain from Unnecessary Self-Promotion: If you’re referencing tools or articles you’re affiliated with, please disclose this relationship in your pull request. This transparency helps us ensure that the content aligns with the overall objectives of the guide.
If you’re unsure about anything, feel free to reach out to us with your questions.
| Name | Company | Country | Contribution |
|---|---|---|---|
| Chris Ancharski | Global community builder | US | Engagement specialist, leadership team |
| John Sotiropoulos | Kainos | UK | External relations, leadership team |
| Rob van der Veer | Software Improvement Group (SIG) | Netherlands | Project leader |
| Adelin Travers | Trail of Bits | ||
| Alon Tron | Stealth | Israel | Improved supply chain management |
| Angie Qarry | QDeepTech | Austria | several elaborations and references on data science defence mechanisms |
| Annegrit Seyerlein-Klug | TH Brandenburg | Germany | mapping with misc. standards |
| Anthony Glynn | CapitalOne | US | many textual improvements & link to LLM top 10 |
| Behnaz Karimi | Accenture | Germany | misc. contributions including model obfuscation and explanation |
| Dennis Charolle | MilliporeSigma | US | Compliance overview and copyright |
| Disesdi Susanna Cox | BobiHealth | US | Federated learning |
| Feiyang Tang | Software Improvement Group (SIG) | ||
| Marko Lihter | SplxAI | Croatia | step-by-step guide for organizations, website creation, various textual improvements |
| Niklas Bunzel | Fraunhofer institute | Germany | data science discussion and references around evasion attacks |
| Rocky Heckman | Cyber Dynamo | Australia | Security & privacy risk analysis and ISO/IEC 27562 |
| Rubens Zimbres | Brazil | Adversarial machine learning | |
| Roger Sanz | Universidad Isabel | Spain | |
| Sandy Dunn | Boise State University, AI Cyber Advisors | US | Community management in the initial phase |
| Sean Oesch | Oak Ridge National Laboratory | US | BLUF, Adversarial Training, OOD detection, NISTIR 8269, Guide Usability/Structure |
| Srajan Gupta | Dave | ||
| Steve Francolla | Workforce Tech LLC | ||
| Wei Wei | IBM | Germany | mapping with ISO/IEC 42001 |
| Yiannis Kanellopoulos and team | Code4thought | Greece | evasion robustness |
| Zoe Braiterman | Mutual Knowledge Systems | US | Many markdown improvements |