Need to get a security review of the new WikiGrok extension so that it can be deployed to the cluster. This should be trivial as it's just a small API at this point.
Version: wmf-deployment
Severity: normal
Need to get a security review of the new WikiGrok extension so that it can be deployed to the cluster. This should be trivial as it's just a small API at this point.
Version: wmf-deployment
Severity: normal
Status | Subtype | Assigned | Task | ||
---|---|---|---|---|---|
Resolved | None | T74465 Deploy WikiGrok extension to test, test2, and en.wiki | |||
Resolved | • csteipp | T74567 Need security review for WikiGrok extension |
I talked through the dataflow and interfaces for this with Kaldari and Max. The mobile team should continue to review each other's code for basic security flaws, but nothing in the architecture really concerns me.
One todo coming out of this is to invalidate the cache for fast campaigns when wikidata notifies of updates, so that deleted/suppressed wikidata items aren't displayed. But that doesn't need to block deployment.