Page MenuHomePhabricator

Configure CI to run phan-taint-check-plugin for MediaWiki core
Closed, ResolvedPublic

Description

@Bawolff I assume the setup process is the same except we use the seccheck-mw script?

Event Timeline

Yes.

There are still quite a few false positives to sort out, but its starting to get more manageable

Change 462341 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[integration/config@master] Add experimental mediawiki-core-php70-phan-seccheck-docker job

https://gerrit.wikimedia.org/r/462341

Change 462341 merged by jenkins-bot:
[integration/config@master] Add experimental mediawiki-core-php70-phan-seccheck-docker job

https://gerrit.wikimedia.org/r/462341

Change 522424 had a related patch set uploaded (by Daimona Eaytoy; owner: Daimona Eaytoy):
[integration/config@master] jjb: Use core mode for core-seccheck-docker

https://gerrit.wikimedia.org/r/522424

Change 522424 merged by jenkins-bot:
[integration/config@master] jjb: Use core mode for core-seccheck-docker

https://gerrit.wikimedia.org/r/522424

hashar added a subscriber: hashar.

It seems that has been solved.

It seems that has been solved.

Yes, or at least, CI has been configured. We still have to enable seccheck for core, but I'll open another task for that.

sbassett triaged this task as Medium priority.Oct 15 2019, 7:25 PM