Wikimedia Security Team/AppSec Clinic Minutes/2022-11-01

Date: 2022-11-01

Attending: SBassett_(WMF), MStyles_(WMF)

Phabricator Tasks In Progress

edit
  1. MMartorana_(WMF)
    1. T315407 - "Passive watching", maybe get Kelton's take?
    2. T316414 - Manfredi will work on a ported patch for this edge case.
    3. T318915 - Tag PE for risk assessment help, determine some path forward.
    4. T317595 - Assigned to review discussion and new tasks.
  2. MStyles_(WMF)
    1. T313241 - Maint script merged, determine next steps.
    2. T316360 - Awaiting feedback.
    3. T316998 - Overly-cautious security-protection, possible follow-up.
    4. T318731 - Assigned to MStyles_(WMF) for follow-up.
    5. T318731 - Assigned to MStyles_(WMF) for follow-up.
    6. T319134 - Assigned to MStyles_(WMF) for follow-up.
    7. T320363 - Assigned to MStyles_(WMF) for follow-up.
    8. T320611 - Waiting to grant security access on requester...
  3. Reedy_(WMF)
    1. T306211 - Open, untriaged.
    2. T310393 - Open, untriaged.
    3. T318825 - Assigned for follow-up.
    4. T321092 - Assigned for follow-up.
  4. SBassett_(WMF)
    1. T314884 - Awaiting further response from legoktm.
    2. T315820 - Triage, await discussion.
    3. T316722 - Await discussion.
    4. T320540 - Assigned to SBassett_(WMF) for follow-up.

New Phabricator Tasks Reviewed

edit
  1. T320987 - Assigned to MMartorana_(WMF) to review.
  2. T321733 - Assigned to MStyles_(WMF) for thanks and to add to next supp release.
  3. T321318 - Assigned to SBassett_(WMF) to review.
  4. T321458 - Assigned to MMartorana_(WMF) to review.
  5. T321467 - Assigned to MStyles_(WMF) to review.
  6. T321921 - Assigned to SBassett_(WMF) to review.
  7. T321971 - To follow up with Kelton.