Wikimedia Security Team/AppSec Clinic Minutes/2022-06-21

Date: 2022-06-21

Attending:, ,

Phabricator Tasks In Progress

 * 1) T307278 - Patch still in progress
 * 2) T308583 - Triaged, moved to secteam Watching, done.
 * 3) DONE for secteam, for now
 * 4) T309411 - Urbanecm wrote/deployed config patch, done.
 * 5) DONE
 * 6) T309894 - Tag MW-Core, core platform, determine ownership.
 * 7) T310023 - Discussion on task, left to AHT to triage/resolve.
 * 8) DONE for secteam, for now
 * 9) T306514 - Still in-progress
 * 10) T308473 - Reached out to Daimona regarding a patch
 * 11) DONE
 * 12) T309255 - Recommended retire affected extension, under further review
 * 13) T290313 - Deemed low risk
 * 14) DECLINED
 * 15) T309943 - Zabe added, tag Traffic/Brandon, see who can look at remaining items
 * 16) T310069 - Verify tagged teams, members for further review, move off secteam incoming
 * 17) Subbu responded
 * 18) T306516 - No update at this time
 * 19) T306211 - No update at this time
 * 20) T309703 - No update at this time
 * 21) T310393 - No update at this time
 * 22) T308861 - Patch written and posted, try to get CR then deploy
 * 23) T310312 - Assigned to  to verify and complete
 * 24) DONE
 * 25) T310314 - Assigned to  to verify and complete
 * 26) DONE
 * 27) T298784 - Security access, to discuss with
 * 1) DONE
 * 2) T310314 - Assigned to  to verify and complete
 * 3) DONE
 * 4) T298784 - Security access, to discuss with

New Phabricator Tasks Reviewed

 * 1) T310763 - Assigned to  for triage/CR.