Wikimedia Security Team/Security Review Planning/2022-10-05

Minutes for the Security Team's Q2 2023 (July to September) quarterly planning session

Attending:, , , CLemoisson-WMF

Completed Reviews, Previous Quarter
 * 1) Campaign Events Threat Model / API -  - T309410#8283772
 * 2) Pinia -  - T308495#8261380
 * 3) ext:CampaignEvents -  - T290248#8276687

Reviews That Need Follow-Up This Quarter
 * 1) OIT LDAP - verify takedown, blocked on Okta SAML piece -  - T155537
 * 2) Wikispeech - re-evaluate/decline -  - T180021

Updates Made For Other Review Tasks
 * 1) Gitlab Runners - Vendor review completed and evaluated -  - T304514
 * 2) Abstract Wikipedia - Language Review for ZObject spec, blocked on development work -  - T302472

Accepted Reviews To Complete This Quarter
 * 1) Sound Logo / WordPress - requires comms plan -  - T317769
 * 2) d3.js - Complete by December -  - T318854
 * 3) theresnotime/ipa-validator - Complete by October -  - T316913
 * 4) swaggest/json-diff - Complete by mid-November -  - T316523
 * 5) ext:Phonos - Complete by mid-November -  - T314296
 * 6) ext:SearchVue - Complete by mid-November -  - T314296