Jump to content


From mediawiki.org

This page documents information related to Security for the MediaWiki platform and the Wikimedia Foundation.

To report security bugs, vulnerabilities or other issues please follow our reporting process.

Receive MediaWiki release notifications

Subscribe to the low-traffic mediawiki-announce mailing list to receive notifications of new MediaWiki releases by email.

This will include all security fix releases as well as other new versions. Anyone running a MediaWiki installation is strongly recommended to subscribe.

Educational and training material

Project Use by Wikimedia Security Team
mediawiki.org General content for policies, standard operating procedures (SOPs), etc. Official Security team page.
wikitech.wikimedia.org Procedural or instructional material that is not training.
office.wikimedia.org (non-public) Sensitive or private content. Must have a non-disclosure agreement (NDA) with the Wikimedia Foundation and appropriate access.
foundation.wikimedia.org Canonical location for official policies of the Wikimedia Foundation

Understanding the Wikimedia Security Team's documentation structure.