Wikimedia Security Team/AppSec Clinic Minutes/2022-09-12

Date: 2022-09-12

Attending: ,

Phabricator Tasks In Progress

 * 1) T312820 - Tgr patch to be tested locally by Manfredi.
 * 2) T314245 - Patch deployed. Can be removed next week.
 * 3) T315407 - Potential incident follow-up/investigation?
 * 4) T316414 - Needs follow-up - has CVE, but still need patch!
 * 5) T311337 - Patch to be deployed today.
 * 6) T312951 - Ready to grant access.
 * 7) T313241 - Get maint script option reviewed, follow up with legal, determine next steps.
 * 8) T314425 - Can be merged!
 * 9) T315123 - Patch ready, needs AHT review.
 * 10) T316360 - Awaiting feedback.
 * 11) T316304 - Assigned to  for follow-up (as they created it).
 * 12) T306211 - Open, untriaged.
 * 13) T310393 - Open, untriaged.
 * 14) T311368 - Open, untriaged.
 * 15) T315366 - Inform Legal.
 * 16) T315570 - Brendan to follow up on questions.
 * 17) T314884 - Awaiting further response from legoktm.
 * 18) T315820 - Triage, await discussion.
 * 19) T316029 - Follow up on Bryan's and Antoine's notes.
 * 20) T316722 - Await discussion.
 * 1) T314884 - Awaiting further response from legoktm.
 * 2) T315820 - Triage, await discussion.
 * 3) T316029 - Follow up on Bryan's and Antoine's notes.
 * 4) T316722 - Await discussion.

New Phabricator Tasks Reviewed

 * 1) T316998 - Assigned to  for follow-up.