Attendees
| Name | Role |
|---|---|
Action Items
| # | Assigned | Description | Date Identified | Due Date | Date Completed | Status |
|---|---|---|---|---|---|---|
| . |
Progress
| Area of Interest | Details |
|---|---|
| LexEVS | |
| Report Writer | Need a decision on where this functionality is going to go to start creating trackers and scope document. |
| Term Browser | Appscan started Monday afternoon and completed later in the afternoon. Security team just tested the vulnerabilities found in the previous scan. Only one cross site scripting error remained. Kim put in a fix and cut a new tag. QA team is currently re-indexing the database to test the ICD-9 links data fix and patch. Also fixed the longs parameter string issue. Both need to be tested then put in for another appscan. MedDRA – did work on MedDRA java script based on discussion with Larry. Wrote java script hyperlink NCIt code to the Term & Properties page and having a separate link to Suggest Change. |
| Term Suggestion Applicaton | Updated PTE and put in request for using SSL on Prod and stage. This has been completed. |
| NCIm Browser | AppScan completed with no high vulnerabilities. Adding the fixes from Term Browser to NCIm as we appscan finds them. |
JIRA Issues
| Issue Number | Description | Status |
|---|---|---|
| LEXEVS-1194 | ResolvedConceptReference getEntityType method may return an empty array. | Submitted this ticket. |
| NCITERM-698 | MSSO Support. | Met with MSSO to gather requirements and to discuss the possible programming interfaces between MSSO’s web based browser and NCI term browser. |
| NCITERM-670 | Term Browser AppScan Performance. | Refined response to long http parameter value vulnerability. |
| NCITERM-700 | Matches returned by exact relationship search against ICD-9-CM are not clickable. | Performed trouble shooting on the root cause. Implemented a work-around to resolve the underlying issue. |
| NCIM-209 | AppScan Performance. | The preliminary appscan shows no high and medium level vulnerability. |
Schedule Changes
| # | Description | Due Date | Resources | Notes | Risks | Mitigation |
|---|---|---|---|---|---|---|
Planned Activities
| Area of Interest | Details |
|---|---|
| Term Browser 2.7 Release | Test and deployment of the 2.7 release. |
| NCIm Browser 2.6 Release | Planning for development of 2.6 release. |
Risks, Issues, Dependencies
Risks
| # | Opened Date | Due Date | Description | Likelihood (H, M, L) | Impact | Assigned | Status | Mitigation Strategy |
|---|---|---|---|---|---|---|---|---|
| 09/10/2015 | H | H | AppScan are taking long periods of time to complete. For Term browser, the minimum has been 5 days. | We are working on both the code base and configuration of the scan to try to improve performance. We are also looking at open source code scanners that could possibly be used ahead of the AppScan to at least limit the number appscans required. | ||||
Issues
| # | Opened Date | Description | Impact | Assigned | Status |
|---|---|---|---|---|---|
| 7/17/2014 | Deployment of software, even small upgrades, have been a lengthy process. | This especially affects smaller releases in which there are security or bug fixes. | The Agile practices migration have been put on hold for now. | ||
| 09/10/2014 | Getting the environment in place for the Mayo trip to NCI. | Need to get each of the environment (DEV,QA,Stage) in place before the Mayo trip on September 22nd. We are currently one week behind. The impact is that the Mayo developer will be onsite to work on the deployments and the tiers will not be in place. | Currently we only have the DEV environment setup for the LexEVS API> | ||
Dependencies
| Opened Date | Description | Assigned |
|---|---|---|
| . | ||
