Wikimedia Security Team/AppSec Clinic Minutes/2023-05-15

Date: 2023-05-15

Attending: CLemoisson-WMF, ,

Phabricator Tasks In Progress

 * 1) MMartorana_(WMF)
 * 2) T144097 - Investigating potential patches.
 * 3) T332889 - Try to understand if/who owns LogFormatter?
 * 4) T334437 - Triaged, try to find likely maintainers.
 * 5) T335612 - Deployed.
 * 6) T336113 - To triage, maybe write patch.
 * 7) MStyles_(WMF)
 * 8) T323651 - Prep for security deploy, work on comms.
 * 9) T335164 - Analysis work assigned to Maryum.
 * 10) T335556 - Possibly mark invalid pending status of T323651.
 * 11) T250720#8830971 -  to review.
 * 12) T336027 - To triage, somewhat dependent upon T333140.
 * 13) Reedy_(WMF)
 * 14) T333722 - Decom channel soon.
 * 15) T318825 - Assigned for follow-up.
 * 16) T321092 - Assigned for follow-up.
 * 17) T330086 - Done, add reporter to secteam HoF.
 * 18) T335204 - Assigned to  for review.
 * 19) T335288 - Assigned to  for review.
 * 20) SBassett_(WMF)
 * 21) T326871 - Waiting on AHT/Thalia response.
 * 22) T333140 - Update mitigations for user-rights.
 * 23) T334895 - In-progress.
 * 24) T301181 - To analyze, ping Andre again?

Sent to Kelton

Sent to Privacy Engineering

New Phabricator Tasks Reviewed

 * 1) T336310 -  to analyze.
 * 2) T336536 -  to add access.