Wikimedia Security Team/Security Review Planning/2022-07-06

Minutes for the Security Team's Q1 2023 (April to June) quarterly planning session

Attending:, ,

Completed Reviews, Previous Quarter
 * 1) SimilarEditors Extension  (T304631#8045258)
 * 2) Similarusers Service  (T306808)
 * 3) Codex  (T302772#8056180)
 * 4) Image Suggestions Service  (T304885#8032050)

Reviews That Need Follow-Up This Quarter
 * 1) Trusted GitLab Runners (likely out of scope) (https://phabricator.wikimedia.org/T304514)
 * 2) OIT LDAP (verify takedown at end of quarter) (https://phabricator.wikimedia.org/T155537)
 * 3) Wikispeech (re-evaluation and re-prioritization) (https://phabricator.wikimedia.org/T180021)

Accepted Reviews To Complete This Quarter
 * 1) Wikistories extension (SBassett) (https://phabricator.wikimedia.org/T301389)
 * 2) Abs Wiki Function Schemata (SBassett) (https://phabricator.wikimedia.org/T302472)
 * 3) Codex component library (MMartorana)(https://phabricator.wikimedia.org/T302772)
 * 4) Image Suggestions Service (MMartorana) (https://phabricator.wikimedia.org/T304885)
 * 5) SimilarUsers extension (Mstyles) (https://phabricator.wikimedia.org/T304631)
 * 6) Campaigns Registration System (Mstyles) (https://phabricator.wikimedia.org/T290248)

Updates Made For Other Review Tasks
 * 1) Mailman3 (still a soft decline, vendor?) (https://phabricator.wikimedia.org/T289899#7403112)
 * 2) Design of Toolforge Kubernetes (officially declined, pentest of wmcs) (https://phabricator.wikimedia.org/T245205)