OWASP BLT (Bug Logging Tool) is a community-driven OWASP Foundation project that develops and maintains open-source tools for structured vulnerability reporting, bug tracking, security automation, contributor engagement, and related infrastructure. The BLT ecosystem includes modular services, APIs, dashboards, browser and mobile applications, automation bots, and research initiatives, all developed transparently under OWASP governance and open-source licensing.
All active OWASP BLT projects and initiatives are tracked through GitHub Project Boards. Below is a comprehensive table of all projects with their related repositories:
| Project | Description | Related Repository |
|---|---|---|
| OWASP BLT Project Board | Central board for tracking, prioritizing, and coordinating all BLT initiatives | - |
| BLT-API | Python API on Cloudflare for BLT | BLT-API |
| BLT-NetGuardian | Web scanning automation | BLT-NetGuardian, BLT-NetGuardian-Client |
| Core Infrastructure | Core infrastructure improvements and maintenance | BLT-on-Cloudflare |
| Bug Logging | The core Bug Logging Tool | BLT |
| Slack Bot 2.0 | Enhanced Slack bot for real-time security alerts | BLT-Lettuce, BLT-Lettuce-on-Cloudflare |
| Zero Trust Vulnerability Reporting | Zero-trust workflow for secure vulnerability reporting | - |
| Organization Dashboard | Enhanced vulnerability & bug management dashboard | - |
| BACON | Blockchain Assisted Contribution Network | BLT-Bacon |
| AI-Powered GitHub Sportscaster | Animated announcer bot monitoring GitHub activity | Github_Sportscaster |
| AI-Powered Code Review | AI-driven code review and issue prioritization | - |
| Security | General security improvements and audits | - |
| Security Private | Private security initiatives | - |
| Security Labs | Security research and experimentation | - |
| Encrypted Chat | End-to-end encrypted messaging | - |
| Protection Of Online Privacy | Privacy-focused data deletion toolkit | SelfErase |
| Trademark Defense | USPTO database integration for trademark monitoring | - |
| Secure API Development | Migration to Django Ninja for security and speed | - |
| More Gamification | Enhance user engagement through gamification | - |
| Improve Community Engagement | Community participation and collaboration initiatives | - |
| OWASP BLT Adventures | Interactive adventures across OWASP projects | - |
| Sizzle Daily Check In | Daily check-in system for contributors | Sizzle, Toasty |
| Issue Bounties | Bug bounty program and issue rewards | - |
| Issue Pledge | Pledge system for issue sponsorship | - |
| Decentralized Bidding System | Bitcoin Cash integration for issue bidding | - |
| Component Modularization | Breaking down BLT into reusable components | - |
| Projects | Projects feature development | - |
| Review Queue | Content moderation and site quality | - |
| Improve Organization Functions | Organization-level feature enhancements | - |
| Organization Portal in App | Dedicated portal for organizations | - |
| Chrome Extension | Browser extension development | BLT-Extension |
| Flutter App | Mobile application (iOS / Android) | BLT-Flutter |
| OWASP BLT Newsletter | Regular newsletter for users | - |
| BLT Forum | Community forum for discussions | - |
| Panini | Tracking banned apps by country | Panini |
| Hackathon Coordinator | Hackathon coordination and management | BLT-Hackathon, BLT-Hackathon-NPM |
| Enhanced Slack Bot | Real-time security alerts and workflow automation | - |
Below is a comprehensive table of all OWASP BLT modules with their GitHub statistics:
| Module | Description |  |
 |
 |
 |
|---|---|---|---|---|---|
| BLT | OWASP BLT - Bug Logging Tools |  |
 |
 |
 |
| BLT-Flutter | Mobile app implementation (Flutter) |  |
 |
 |
 |
| BLT-Extension | Browser extension for quick reporting and integration |  |
 |
 |
 |
| BLT-Action | GitHub Action integrations for BLT workflows |  |
 |
 |
 |
| BLT-Lettuce | Automation / bot tooling for BLT |  |
 |
 |
 |
| BLT-Sammich | Helper bots and automation utilities |  |
 |
 |
 |
| Github_Sportscaster | GitHub activity bot / API tooling |  |
 |
 |
 |
| BLT-NetGuardian | Web scanning automation for security |  |
 |
 |
 |
| BLT-NetGuardian-Client | Client application to help make the web safer |  |
 |
 |
 |
| OWASP-BLT-Lyte | Lightweight monitoring tools and dashboards |  |
 |
 |
 |
| OWASP-BLT-Website-Monitor | Website monitoring and uptime checks |  |
 |
 |
 |
| BLT-on-Cloudflare | BLT deployed on Cloudflare Workers |  |
 |
 |
 |
| BLT-Bacon | Bitcoin-based token system for contributions |  |
 |
 |
 |
| BLT-Tomato | Project management scripts and tooling |  |
 |
 |
 |
| BLT-API | Python API on Cloudflare for BLT |  |
 |
 |
 |
| SelfErase | Privacy toolkit to delete personal data |  |
 |
 |
 |
| Fresh | Privacy-focused time tracking system |  |
 |
 |
 |
| Sizzle | Daily check-in system for contributors |  |
 |
 |
 |
| Toasty | Demo web tooling |  |
 |
 |
 |
| BLT-Hackathon | Hackathon resources and starter projects |  |
 |
 |
 |
| BLT-Hackathon-NPM | NPM package for hackathon tools |  |
 |
 |
 |
| MY-GSOC-TOOL | GSoC contributor dashboard |  |
 |
 |
 |
| OWASP-Wich | Compliance checker for OWASP projects |  |
 |
 |
 |
| OWASP-Bumper | Bumper management tooling |  |
 |
 |
 |
| BLT-CVE | Decentralized CVE database |  |
 |
 |
 |
| Panini | Banned apps by country tracker |  |
 |
 |
 |
| BLT-sandbox | Sandbox for experiments and testing |  |
 |
 |
 |
| documentation | Official documentation site |  |
 |
 |
 |
| .github | Community settings and workflows |  |
 |
 |
 |
| BLT-Blog | BLT blog and community updates |  |
 |
 |
 |
| team | Team information and resources |  |
 |
 |
 |
| OWASP-metadata | Metadata strategies for OWASP projects |  |
 |
 |
 |
Happy coding, and thank you for making OWASP BLT better!
