NIH | National Cancer Institute | NCI Wiki  




Action Items

 #AssignedDescriptionDate IdentifiedDue DateDate CompletedStatus


Area of InterestDetails
Report Writer

Need a decision on where this functionality is going to go to start creating trackers and scope document.

Term Browser 

Appscan started Monday afternoon and completed later in the afternoon.  Security team just tested the vulnerabilities found in the previous scan.  Only one cross site scripting error remained.  Kim put in a fix and cut a new tag.

QA team is currently re-indexing the database to test the ICD-9 links data fix and patch.  Also fixed the longs parameter string issue. 

Both need to be tested then put in for another appscan.

MedDRA – did work on MedDRA java script based on discussion with Larry. Wrote java script hyperlink NCIt code to the Term & Properties page and having a separate link to Suggest Change.

Term Suggestion Applicaton
Updated PTE and put in request for using SSL on Prod and stage.  This has been completed.
NCIm Browser

AppScan completed with no high vulnerabilities.  Adding the fixes from Term Browser to NCIm as we appscan finds them. 

JIRA Issues

Issue NumberDescriptionStatus
LEXEVS-1194ResolvedConceptReference getEntityType method may return an empty array.Submitted this ticket.

MSSO Support.

Met with MSSO to gather requirements and to discuss the possible programming interfaces between MSSO’s web based browser and NCI term browser.

NCITERM-670Term Browser AppScan Performance.

Refined response to long http parameter value vulnerability.

NCITERM-700Matches returned by exact relationship search against ICD-9-CM are not clickable.

Performed trouble shooting on the root cause.

Implemented a work-around to resolve the underlying issue.

NCIM-209AppScan Performance.

The preliminary appscan shows no high and medium level vulnerability.

  • Schedule Changes


#DescriptionDue DateResourcesNotesRisksMitigation
  •  Planned Activities

Area of InterestDetails
Term Browser 2.7 ReleaseTest and deployment of the 2.7 release.
NCIm Browser 2.6 ReleasePlanning for development of 2.6 release.
  • Risks, Issues, Dependencies

  • Risks

Opened DateDue DateDescriptionLikelihood (H, M, L)ImpactAssignedStatusMitigation Strategy
 09/10/2015  H H AppScan are taking long periods of time to complete.  For Term browser, the minimum has been 5 days.We are working on both the code base and configuration of the scan to try to improve performance.  We are also looking at open source code scanners that could possibly be used ahead of the AppScan to at least limit the number appscans required.
  • Issues

 #Opened DateDescriptionImpactAssignedStatus
 7/17/2014Deployment of software, even small upgrades, have been a lengthy process.This especially affects smaller releases in which there are security or bug fixes. The Agile practices migration have been put on hold for now.
 09/10/2014Getting the environment in place for the Mayo trip to NCI.Need to get each of the environment (DEV,QA,Stage) in place before the Mayo trip on September 22nd.  We are currently one week behind.  The impact is that the Mayo developer will be onsite to work on the deployments and the tiers will not be in place. Currently we only have the DEV environment setup for the LexEVS API>
  • Dependencies

Opened DateDescriptionAssigned
  • No labels