Recent tagging of XSS issues

edit

Thank you for your recent tagging to Extension pages for XSS vulnerabilities in a couple of extensions.

If you havn't already, it would be fantastic if you could file documentation about the vulnerabilities as a security task in our bug tracking system, Phabricator so that these can be looked at and reviewed. P858snake (talk) 12:42, 24 April 2016 (UTC)Reply

I added a task for the one repository, MsCalendar. As Extension:RecentPages is not in WMF tracking, I feel it would be irresponsible of me to disclose the nature of the vulnerability to a third party such as the WMF. BrentLaabs (talk) 22:35, 24 April 2016 (UTC)Reply
Just to clarify, have you notified Nathan Larson in some off wiki manner of the issue? (He's banned on wiki, but the extension seems to be developed on github so there's potential for him to fix it). Bawolff (talk) 02:46, 25 April 2016 (UTC)Reply
And I see in your edit summary that you did. So ignore my last post. Bawolff (talk) 02:55, 25 April 2016 (UTC)Reply

Share your experience and feedback as a Wikimedian in this global survey

edit
  1. This survey is primarily meant to get feedback on the Wikimedia Foundation's current work, not long-term strategy.
  2. Legal stuff: No purchase necessary. Must be the age of majority to participate. Sponsored by the Wikimedia Foundation located at 149 New Montgomery, San Francisco, CA, USA, 94105. Ends January 31, 2017. Void where prohibited. Click here for contest rules.

MediaWiki message delivery (talk) 21:27, 13 January 2017 (UTC)Reply

Your feedback matters: Final reminder to take the global Wikimedia survey

edit

(Sorry to write in Engilsh)

MediaWiki message delivery (talk) 08:24, 24 February 2017 (UTC)Reply

ArticleToCategory2

edit

The ArticleToCategory2 extension is now in git and it is updated for MW 1,29. MikaelLindmark (talk) 05:16, 14 August 2017 (UTC)Reply