The ArticleToCategory2 extension is now in git and it is updated for MW 1,29.
Your feedback matters: Final reminder to take the global Wikimedia survey
(Sorry to write in Engilsh)
Share your experience and feedback as a Wikimedian in this global survey
- This survey is primarily meant to get feedback on the Wikimedia Foundation's current work, not long-term strategy.
- Legal stuff: No purchase necessary. Must be the age of majority to participate. Sponsored by the Wikimedia Foundation located at 149 New Montgomery, San Francisco, CA, USA, 94105. Ends January 31, 2017. Void where prohibited. Click here for contest rules.
Recent tagging of XSS issues
Thank you for your recent tagging to Extension pages for XSS vulnerabilities in a couple of extensions.
If you havn't already, it would be fantastic if you could file documentation about the vulnerabilities as a security task in our bug tracking system, Phabricator so that these can be looked at and reviewed.
I added a task for the one repository, MsCalendar. As Extension:RecentPages is not in WMF tracking, I feel it would be irresponsible of me to disclose the nature of the vulnerability to a third party such as the WMF.
Just to clarify, have you notified Nathan Larson in some off wiki manner of the issue? (He's banned on wiki, but the extension seems to be developed on github so there's potential for him to fix it).
And I see in your edit summary that you did. So ignore my last post.