# OWASP DevSecOps Guideline ja

This is the unofficial Japanese translation of the [OWASP DevSecOps Guideline](https://github.com/OWASP/DevSecOpsGuideline).

* Document Site - <https://coky-t.gitbook.io/owasp-devsecops-guideline-ja/>
* Document Repository - <https://github.com/coky-t/owasp-devsecops-guideline-ja>

### Originator

* Project Site - <https://owasp.org/www-project-devsecops-guideline/>
* Project Repository - <https://github.com/OWASP/www-project-devsecops-guideline>
* Document Repository - <https://github.com/OWASP/DevSecOpsGuideline>

## OWASP DevSecOps ガイドライン 日本語版

* [README](/owasp-devsecops-guideline-ja/owasp-devsecops-gaidorain/document.md)

### V0.3

* [0-概論 (Intro)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/0-Intro/README.md)
  * [0-1-序文 (Intro)](/owasp-devsecops-guideline-ja/v0.3/0-gai-lun-intro/0-1-intro.md)
  * [0-2-概要 (Overview)](/owasp-devsecops-guideline-ja/v0.3/0-gai-lun-intro/0-2-overview.md)
* [1-要員 (People)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/1-People/README.md)
  * [1-1-チーム形成 (Shape-the-team)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/1-People/1-1-Shape-the-team/README.md)
    * [1-1-1-セキュリティチャンピオン (Security-champions)](/owasp-devsecops-guideline-ja/v0.3/1-yao-yuan-people/1-1-chmu-shape-the-team/1-1-1-security-champions.md)
  * [1-2-トレーニング (Training)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/1-People/1-2-Training/README.md)
    * [1-2-1-セキュアコーディング (Secure-coding)](/owasp-devsecops-guideline-ja/v0.3/1-yao-yuan-people/1-2-torningu-training/1-2-1-secure-coding.md)
    * [1-2-2-セキュリティ CI/CD (Security-CICD)](/owasp-devsecops-guideline-ja/v0.3/1-yao-yuan-people/1-2-torningu-training/1-2-2-security-cicd.md)
* [2-プロセス (Process)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/README.md)
  * [2-1-設計 (Design)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-1-Design/README.md)
    * [2-1-1-脅威モデリング (Threat-modeling)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/21-she-ji-design/2-1-1-threat-modeling.md)
  * [2-2-開発 (Develop)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-2-Develop/README.md)
    * [2-2-1-コミット前 (Pre-commit)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-2-Develop/2-2-1-Pre-commit/README.md)
      * [2-2-1-1-プレコミット (Pre-commit)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/22-kai-fa-develop/2-2-1-komitto-pre-commit/2-2-1-1-pre-commit.md)
      * [2-2-1-2-シークレット管理 (Secrets-Management)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/22-kai-fa-develop/2-2-1-komitto-pre-commit/2-2-1-2-secrets-management.md)
      * [2-2-1-3-コードのリンティング (Linting-code)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/22-kai-fa-develop/2-2-1-komitto-pre-commit/2-2-1-3-linting-code.md)
      * [2-2-1-4-リポジトリ堅牢化 (Repository-Hardening)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/22-kai-fa-develop/2-2-1-komitto-pre-commit/2-2-1-4-repository-hardening.md)
  * [2-3-ビルド (Build)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-3-Build/README.md)
    * [2-3-5-セキュリティゲート (Security-Gates)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/2-3-5-security-gates.md)
    * [2-3-1-静的解析 (Static-Analysis)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-3-Build/2-3-1-Static-Analysis/README.md)
      * [2-3-1-1-静的アプリケーションセキュリティテスト (Static-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/231-jing-de-jie-xi-staticanalysis/2-3-1-1-static-application-security-testing.md)
    * [2-3-2-ソフトウェアコンポジション解析 (Software Composition Analysis)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-3-Build/2-3-2-Software%20Composition%20Analysis/README.md)
      * [2-3-2-1-ソフトウェアコンポジション解析 (Software-Composition-Analysis)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/2-3-2-sofutoweakonpojishon-software-composition-analysis/2-3-2-1-software-composition-analysis.md)
    * [2-3-3-コンテナセキュリティ (Container-Security)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-3-Build/2-3-3-Container-Security/README.md)
      * [2-3-3-1-コンテナスキャン (Container-Scanning)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/2-3-3-kontenasekyuriti-container-security/2-3-3-1-container-scanning.md)
      * [2-3-3-2-コンテナ堅牢化 (Container-Hardening)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/2-3-3-kontenasekyuriti-container-security/2-3-3-2-container-hardening.md)
    * [2-3-4-Infastructure as Code セキュリティ (Infrastructure as Code Security)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-3-Build/2-3-4-Infrastructure%20as%20Code%20Security/README.md)
      * [2-3-1-3-Infastructure as Code スキャン (Infastructure-as-Code-Scanning)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-3-birudo-build/2-3-4-infastructure-as-code-sekyuriti-infrastructure-as-code-security/2-3-1-3-infastructure-as-code-scanning.md)
  * [2-4-テスト (Test)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-4-Test/README.md)
    * [2-4-1-インタラクティブアプリケーションセキュリティテスト (Interactive-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-4-tesuto-test/2-4-1-interactive-application-security-testing.md)
    * [2-4-2-動的アプリケーションセキュリティテスト (Dynamic-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-4-tesuto-test/2-4-2-dynamic-application-security-testing.md)
    * [2-4-3-モバイルアプリケーションセキュリティテスト (Mobile-Application-Security-Test)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-4-tesuto-test/2-4-3-mobile-application-security-test.md)
    * [2-4-4-API セキュリティ (API-Security)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-4-tesuto-test/2-4-4-api-security.md)
    * [2-4-5-構成ミスチェック (Misconfiguration-Check)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-4-tesuto-test/2-4-5-misconfiguration-check.md)
  * [2-5-リリース (Release)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-5-Release/README.md)
    * [2-5-1-リリース (Release)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-5-rirsu-release/2-5-1-release.md)
  * [2-6-デプロイ (Deploy)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-6-Deploy/README.md)
    * [2-6-1-デプロイ (Deploy)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/2-6-depuroi-deploy/2-6-1-deploy.md)
  * [2-7-運用 (Operate)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/2-Process/2-7-Operate/README.md)
    * [2-7-1-クラウドネイティブセキュリティ (Cloud-Native-Security)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/27-yun-yong-operate/2-7-1-cloud-native-security.md)
    * [2-7-2-ログ記録と監視 (Logging-and-Monitoring)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/27-yun-yong-operate/2-7-2-logging-and-monitoring.md)
    * [2-7-3-ペンテスト (Pentest)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/27-yun-yong-operate/2-7-3-pentest.md)
    * [2-7-4-脆弱性管理 (Vulnerability-Management)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/27-yun-yong-operate/2-7-4-vulnerability-management.md)
    * [2-7-6-侵害と攻撃のシミュレーション (Breach-and-attack-simulation)](/owasp-devsecops-guideline-ja/v0.3/2-purosesu-process/27-yun-yong-operate/2-7-6-breach-and-attack-simulation.md)
* [3-ガバナンス (Governance)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/3-Governance/README.md)
  * [3-2-データ保護 (Data-protection)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-2-data-protection.md)
  * [3-1-コンプライアンス監査 (Compliance-Auditing)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/3-Governance/3-1-Compliance-Auditing/README.md)
    * [3-1-1-コンプライアンス監査 (Compliance-Auditing)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-1-konpuraiansu-compliance-auditing/3-1-1-compliance-auditing.md)
    * [3-1-2-Policy as Code (Policy-as-code)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-1-konpuraiansu-compliance-auditing/3-1-2-policy-as-code.md)
    * [3-1-3-セキュリティベンチマーク (Security-benchmarking)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-1-konpuraiansu-compliance-auditing/3-1-3-security-benchmarking.md)
  * [3-3-レポーティング (Reporting)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/current-version/3-Governance/3-3-Reporting/README.md)
    * [3-3-1-成熟度追跡 (Tracking-maturities)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-3-reptingu-reporting/3-3-1-tracking-maturities.md)
    * [3-3-2-脆弱性一元管理ダッシュボード (Central-vulnerability-management-dashboard)](/owasp-devsecops-guideline-ja/v0.3/3-gabanansu-governance/3-3-reptingu-reporting/3-3-2-central-vulnerability-management-dashboard.md)

### V0.2

* [0-概論 (Intro)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/0-Intro/README.md)
  * [0-1-序文 (Intro)](/owasp-devsecops-guideline-ja/v0.2/0-gai-lun-intro/0-1-intro.md)
  * [0-2-概要 (Overview)](/owasp-devsecops-guideline-ja/v0.2/0-gai-lun-intro/0-2-overview.md)
* [1-導入 (Init)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/1-Init/README.md)
  * [1-1-チーム形成 (Shape-the-team)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/1-Init/1-1-Shape-the-team/README.md)
    * [1-1-1-セキュリティ担当者 (Security-champions)](/owasp-devsecops-guideline-ja/v0.2/1-dao-ru-init/1-1-chmu-shape-the-team/1-1-1-security-champions.md)
  * [1-2-トレーニング (Training)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/1-Init/1-2-Training/README.md)
    * [1-2-1-セキュアコーディング (Secure-coding)](/owasp-devsecops-guideline-ja/v0.2/1-dao-ru-init/1-2-torningu-training/1-2-1-secure-coding.md)
    * [1-2-2-セキュリティ CI/CD (Security-CICD)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/1-Init/1-2-Training/1-2-1-Security-CICD.md)
* [2-コミット前 (Pre-commit)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/2-Pre-commit/README.md)
  * [2-1-プレコミット (Pre-commit)](/owasp-devsecops-guideline-ja/v0.2/2-komitto-pre-commit/2-1-pre-commit.md)
  * [2-2-脅威モデリング (Threat-modeling)](/owasp-devsecops-guideline-ja/v0.2/2-komitto-pre-commit/2-2-threat-modeling.md)
  * [2-3-リポジトリ堅牢化 (Repository-hardening)](/owasp-devsecops-guideline-ja/v0.2/2-komitto-pre-commit/2-3-repository-hardening.md)
  * [2-4-シークレット管理 (Secrets-Management)](/owasp-devsecops-guideline-ja/v0.2/2-komitto-pre-commit/2-4-secrets-management.md)
  * [2-5-コードのリンティング (Linting-code)](/owasp-devsecops-guideline-ja/v0.2/2-komitto-pre-commit/2-5-linting-code.md)
* [3-コミット CI (Commit-CI)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/3-Commit-CI/README.md)
  * [3-2-インタラクティブアプリケーションセキュリティテスト (Interactive-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/3-2-interactive-application-security-testing.md)
  * [3-1-静的解析 (Static-analysis)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/3-Commit-CI/3-1-Static-analysis/README.md)
    * [3-1-1-静的アプリケーションセキュリティテスト (Static-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/31-jing-de-jie-xi-staticanalysis/3-1-1-static-application-security-testing.md)
    * [3-1-2-ソフトウェアコンポジション解析 (Software-Composition-Analysis)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/31-jing-de-jie-xi-staticanalysis/3-1-2-software-composition-analysis.md)
    * [3-1-3-コンテナセキュリティ (Container-Security)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/3-Commit-CI/3-1-Static-analysis/3-1-3-Container-Security/README.md)
      * [3-1-3-1-コンテナスキャン (Container-scanning)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/31-jing-de-jie-xi-staticanalysis/3-1-3-kontenasekyuriti-container-security/3-1-3-1-container-scanning.md)
      * [3-1-3-2-コンテナ堅牢化 (Container-hardening)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/31-jing-de-jie-xi-staticanalysis/3-1-3-kontenasekyuriti-container-security/3-1-3-2-container-hardening.md)
    * [3-1-4-Infastructure as Code (Infastructure-as-code)](/owasp-devsecops-guideline-ja/v0.2/3-komitto-ci-commit-ci/31-jing-de-jie-xi-staticanalysis/3-1-4-infastructure-as-code.md)
* [4-継続的デリバリ CD (Continuous-delivery-CD)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/4-Continuous-delivery-CD/README.md)
  * [4-1-動的アプリケーションセキュリティテスト (Dynamic-Application-Security-Testing)](/owasp-devsecops-guideline-ja/v0.2/4-deribari-cd-continuous-delivery-cd/4-1-dynamic-application-security-testing.md)
  * [4-2-モバイルアプリケーションセキュリティテスト (Mobile-Application-Security-Test)](/owasp-devsecops-guideline-ja/v0.2/4-deribari-cd-continuous-delivery-cd/4-2-mobile-application-security-test.md)
  * [4-3-API セキュリティ (API-Security)](/owasp-devsecops-guideline-ja/v0.2/4-deribari-cd-continuous-delivery-cd/4-3-api-security.md)
  * [4-4-設定ミスのチェック (Miss-Configuration-Check)](/owasp-devsecops-guideline-ja/v0.2/4-deribari-cd-continuous-delivery-cd/4-4-miss-configuration-check.md)
* [5-デプロイ CD 稼働開始 (Deploy-CD-Golive)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/5-Deploy-CD-Golive/README.md)
  * [5-1-鍵と証明書の管理 (Key-and-certificate-management)](/owasp-devsecops-guideline-ja/v0.2/5-depuroi-cd-deploy-cd-golive/5-1-key-and-certificate-management.md)
  * [5-2-クラウドネイティブアプリケーション保護プラットフォーム (Cloud-Native-Application-Protection-Platform)](/owasp-devsecops-guideline-ja/v0.2/5-depuroi-cd-deploy-cd-golive/5-2-cloud-native-application-protection-platform.md)
* [6-運用 (Operation)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/6-Operation/README.md)
  * [6-1-稼働時テスト|継続的テスト (Runtime|Continuous-test)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/6-Operation/6-1-Runtime-Continuous-test/README.md)
    * [6-1-2-イメージスキャン (Image-scanning)](/owasp-devsecops-guideline-ja/v0.2/6-yun-yong-operation/6-1-tesutotesuto-runtimecontinuous-test/6-1-2-image-scanning.md)
  * [6-2-侵害と攻撃のシミュレーション (Breach-and-attack-simulation)](/owasp-devsecops-guideline-ja/v0.2/6-yun-yong-operation/6-2-breach-and-attack-simulation.md)
  * [6-3-ログ記録と監視 (Logging-and-Monitoring)](/owasp-devsecops-guideline-ja/v0.2/6-yun-yong-operation/6-3-logging-and-monitoring.md)
  * [6-4-ペンテスト (Pentest)](/owasp-devsecops-guideline-ja/v0.2/6-yun-yong-operation/6-4-pentest.md)
  * [6-5-脆弱性開示ポリシーとバグバウンティ (VDP|Bug-bounty)](/owasp-devsecops-guideline-ja/v0.2/6-yun-yong-operation/6-5-vdp-bug-bounty.md)
* [7-ガバナンス (Governance)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/7-Governance/README.md)
  * [7-1-コンプライアンス監査 (Compliance-Auditing)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/7-Governance/7-1-Compliance-Auditing/README.md)
    * [7-1-1-コンプライアンス監査 (Compliance-Auditing)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-1-konpuraiansu-compliance-auditing/7-1-1-compliance-auditing.md)
    * [7-1-2-Policy as Code (Policy-as-code)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-1-konpuraiansu-compliance-auditing/7-1-2-policy-as-code.md)
    * [7-1-3-セキュリティベンチマーク (Security-benchmarking)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-1-konpuraiansu-compliance-auditing/7-1-3-security-benchmarking.md)
  * [7-2-データ保護 (Data-protection)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-2-data-protection.md)
  * [7-3-レポーティング (Reporting)](https://github.com/coky-t/owasp-devsecops-guideline-ja/blob/main/document/old-versions/V0.2/7-Governance/7-3-Reporting/README.md)
    * [7-3-1-成熟度追跡 (Tracking-maturities)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-3-reptingu-reporting/7-3-1-tracking-maturities.md)
    * [7-3-2-脆弱性一元管理ダッシュボード (Central-vulnerability-management-dashboard)](/owasp-devsecops-guideline-ja/v0.2/7-gabanansu-governance/7-3-reptingu-reporting/7-3-2-central-vulnerability-management-dashboard.md)

### V0.1

* [00. OWASP DevSecOps ガイドラインの概要](/owasp-devsecops-guideline-ja/v0.1/00-intro.md)
* [00a. DevSecOps 入門](/owasp-devsecops-guideline-ja/v0.1/00-intro/00a-overview.md)
* [00b. 脅威モデリング](/owasp-devsecops-guideline-ja/v0.1/00-intro/00b-threat-modeling.md)
* [01. コミット前に](/owasp-devsecops-guideline-ja/v0.1/01-pre-commit.md)
* [01a. シークレットとクレデンシャルに注意](/owasp-devsecops-guideline-ja/v0.1/01-pre-commit/01a-secrets-management.md)
* [01b. コードのリンティング](/owasp-devsecops-guideline-ja/v0.1/01-pre-commit/01b-linting-code.md)
* [02. 脆弱性スキャン](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning.md)
* [02a. 静的スキャンはプロセスの重要な部分](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02a-static-application-security-testing.md)
* [02b. 動的アプリケーションセキュリティテスト (DAST)](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02b-dynamic-application-security-testing.md)
* [02c. インタラクティブアプリケーションセキュリティテスト](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02c-interactive-application-security-testing.md)
* [02d. ソフトウェアコンポーネント/コンポジション解析 (SCA)](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02d-software-composition-analysis.md)
* [02e. インフラストラクチャ脆弱性スキャン](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02e-infrastructure-vulnerability-scanning.md)
* [02f. コンテナ脆弱性スキャン](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02f-container-vulnerability-scanning.md)
* [02g. プライバシー](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02g-privacy.md)
* [02h. 脆弱性の一元管理](/owasp-devsecops-guideline-ja/v0.1/02-vulnerability-scanning/02h-vulnerability-management.md)
* [03. コンプライアンス監査](/owasp-devsecops-guideline-ja/v0.1/03-compliance-auditing.md)

## License

[Creative Commons Attribution-ShareAlike 4.0 International](https://creativecommons.org/licenses/by-sa/4.0/)

## Translator (Japanese)

[Koki Takeyama](https://github.com/coky-t)

* Document Site - <https://coky-t.gitbook.io/owasp-docs-ja/>
* Document Repository - <https://github.com/coky-t/owasp-docs-ja>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://coky-t.gitbook.io/owasp-devsecops-guideline-ja/readme.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.