Wikimedia Security Team/AppSec Clinic Minutes/2023-02-21

Date: 2023-02-21

Attending: ,

Phabricator Tasks In Progress

 * 1) MMartorana_(WMF)
 * 2) T326952 - Test the patch and deploy?
 * 3) T327445 - Is someone interested in this?
 * 4) T328746 - Confirm w/ Sam that edit rights are removed.
 * 5) T328393 - Is someone interested in this?
 * 6) T329417 - Triaged, review previous mw versions?
 * 7) MStyles_(WMF)
 * 8) T313241 - Maint script merged, determine next steps.
 * 9) T316360 - Awaiting feedback.
 * 10) T318731 - Assigned to MStyles_(WMF) for follow-up.
 * 11) T318731 - untagged security team
 * 12) T320363 - untagged security team
 * 13) T323651 - Assigned to MStyles_(WMF) to review.
 * 14) T326769 - Assigned to MStyles_(WMF) for follow-up.
 * 15) T328667 - Assigned to MStyles_(WMF) for review.
 * 16) Reedy_(WMF)
 * 17) T306211 - Response provided, requesting team can re-tag when ready for CR.
 * 18) T310393 - Open, untriaged.
 * 19) T318825 - Assigned for follow-up.
 * 20) T321092 - Assigned for follow-up.
 * 21) T324322 - In progress, likely decline.
 * 22) T324323 - In progress, likely decline.
 * 23) T325251 - Assigned for follow-up.
 * 24) SBassett_(WMF)
 * 25) T315820 - Triage, await discussion.
 * 26) T316722 - Await discussion.
 * 27) T326871 - Waiting on AHT/Thalia response.
 * 28) T306708 - Review with secteam leadership.
 * 29) T328568 - Push reviewers for merge.

Sent to Kelton

Sent to Privacy Engineering


 * 1) T328274
 * 2) T325663

New Phabricator Tasks Reviewed

 * 1) T328580 - Added to secteam watching, SRE responsible.
 * 2) T328667 - Assigned to  for review.
 * 3) T329417 - Assigned to  for review. Try to reproduce the issue.