This page documents information related to Security for the MediaWiki platform and the Wikimedia Foundation.

To report security bugs, vulnerabilities or other issues please follow our reporting process.

Receive MediaWiki release notifications

Subscribe to the low-traffic mediawiki-announce mailing list to receive notifications of new MediaWiki releases by email.

This will include all security fix releases as well as other new versions. Anyone running a MediaWiki installation is strongly recommended to subscribe.

Educational and training material

Related security content

Project Use by Wikimedia Security Team General content for policies, standard operating procedures (SOPs), etc. Official Security team page. Procedural or instructional material that is not training. (non-public) Sensitive or private content. Must have a non-disclosure agreement (NDA) with the Wikimedia Foundation and appropriate access. Canonical location for official policies of the Wikimedia Foundation

Understanding the Wikimedia Security Team's documentation structure.