Wikimedia Security Team/AppSec Clinic Minutes/2022-08-16

From mediawiki.org

Date: 2022-08-16

Attending: MMartorana_(WMF), MStyles_(WMF), SBassett_(WMF)

Phabricator Tasks In Progress[edit]

  1. MMartorana_(WMF)
    1. T307278 - Patch proposed.
    2. T311180 - Need to further research issue and find potential maintainers.
    3. T312820 - To further triage.
    4. T314245 - Patch ready to be deployed.
  2. MStyles_(WMF)
    1. T311337 - Waiting on requesters.
      1. Include in next supplemental release, patch still needs CR, then security deploy
    2. T312951 - Waiting on user follow-up to grant access.
    3. T313241 - Niklas responded, Maryum to follow up.
    4. T314425 - Assigned to MStyles (WMF) for assessment-related follow-up.
  3. Reedy_(WMF)
    1. T306516 - No update at this time
    2. T306211 - No update at this time
    3. T309703 - No update at this time
    4. T310393 - No update at this time
    5. T311368 - No update at this time
    6. T314215 - Assigned to Reedy_(WMF) for likely decline, ensure cloud SREs aware.
  4. SBassett_(WMF)
    1. T310763 - Respond to TChanders re: patch deploy.
    2. T313299 - Posted comment for advice/guidance, will watch for a bit.
    3. T313637 - Ongoing event, needs follow-up.
    4. T313898 - Assigned to SBassett_(WMF) for assessment-related follow-up.

New Phabricator Tasks Reviewed[edit]

  1. T314884 - Assigned to SBassett_(WMF) to ponder and bring to Jen's attention.
  2. T314919 - Assigned to MMartorana_(WMF) access granted. Task resolved.
  3. T315123 - Assigned to MStyles_(WMF) for assessment-related follow-up.