Wikimedia Security Team/AppSec Clinic Minutes/2022-06-06

Date: 2022-06-06

Attending: MMartorana_(WMF), MStyles_(WMF), Reedy_(WMF), SBassett_(WMF)

From Last Time

edit
  1. MMartorana_(WMF)
    1. T307278 - Patch still in progress
    2. T308583 - Triaged, moved to secteam Watching, done.
    3. T309411 - Urbanecm wrote/deployed config patch, done.
  2. MStyles_(WMF)
    1. T306514 - Still in-progress
    2. T308473 - Reached out to Daimona regarding a patch
    3. T309255 - Recommended retire affected extension, under further review
    4. T290313 - To follow up on discussion over relevance of the bug
  3. Reedy_(WMF)
    1. T306516 - Result: no update
    2. T306211 - Result: no update
  4. SBassett_(WMF)
    1. T308471 - To triage, maybe help with a patch
    2. T308861 - To triage, log sanitization
    3. T309078 - Possibly triage more and add teams/owners?

Phabricator Tasks Reviewed

edit
  1. T309703 - Assigned to Reedy_(WMF) for further review and triage.
  2. T309894 - Assigned to MMartorana_(WMF) for triage.
  3. T309943 - Assigned to MStyles_(WMF) for triage / additional review.