Wikimedia Security Team/AppSec Clinic Minutes/2024-10-15

Date: 2024-10-15

Dashboard: https://phabricator.wikimedia.org/portal/view/3/

Attending: CLemoisson-WMF, MStyles_(WMF), SBassett_(WMF), MMartorana_(WMF)

Previous Tasks

edit
  1. MMartorana_(WMF)
  2. MStyles_(WMF)
    1. T367677 - waiting for a month until maybe disabling it
  3. SBassett_(WMF)
    1. T364776 - Amir is back, Scott to try and ping him again
  4. Reedy
    1. T373933 - Cléo has pinged Reedy, SBassett also commented here
    2. T375537 - processed, Reedy to be working on it?
    3. T376563 - Publish public "Rules of Engagement" for security researchers and people reporting security vulnerabilities

New Phabricator Tasks Reviewed

edit
  1. T376745 - assigned to MStyles_(WMF), requester need to install MFA
  2. T377168 - Sam already started working on it, SBassett_(WMF) to follow-up
  3. T377200 - invalid, untagged
  4. T377215 - tag Moritz, MStyles_(WMF) to follow-up
  5. T377222 - assigned to MMartorana_(WMF)