Nuke Extension: Code Stewardship Review
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	• Jrbranaa
	Apr 16 2019, 11:26 PM

Description

Intro

The Nuke extension is an anti-abuse tool that is used in the recovery efforts post abuse incident. It currently lacks Code Stewardship and recently surfaced as part of Task T212690.

Number, severity, and age of known and confirmed security issues

none

Was it a cause of production outages or incidents? List them.

Does it have sufficient hardware resources for now and the near future (to take into account expected usage growth)?

n/a

Is it a frequent cause of monitoring alerts that need action, and are they addressed timely and appropriately?

Yes as of late. It's recently been at the root on DBQueryTimeoutError on Wikidata

When it was first deployed to Wikimedia production

unknown

Usage statistics based on audience(s) served

only used by sysops as part of abuse cleanup

Changes committed in last 1, 3, 6, and 12 months

Reliance on outdated platforms (e.g. operating systems)

n/a

Number of developers who committed code in the last 1, 3, 6, and 12 months

1:0, 3:0, 6:2, 12:2

Number and age of open patches

Number and age of open bugs

Number of known dependencies?

Is there a replacement/alternative for the feature? Is there a plan for a replacement?

Nuke's capabilities could be transferred into other abuse tools, but currently is the only source for its capabilities.

Submitter's recommendation (what do you propose be done?)

Per a discussion with @Krinkle, it is recommended that this extension remain deployed and found a Code Steward.

Related Objects

Mentioned Here: T212690: DBQueryTimeoutError on Wikidata's Special:Nuke

Event Timeline

• Jrbranaa created this task.Apr 16 2019, 11:26 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptApr 16 2019, 11:26 PM

• Jrbranaa added a project: MediaWiki-extensions-Nuke.Apr 16 2019, 11:27 PM

(changed ref to be bare to enable hovercards)

Peachey88 subscribed.Apr 17 2019, 7:18 PM

• Jrbranaa moved this task from Backlog to In Review on the Code-Stewardship-Reviews board.Jun 4 2019, 11:14 PM

greg added a project: Release-Engineering-Team (Code Health).Jul 6 2019, 5:56 AM

greg triaged this task as Medium priority.Jul 16 2019, 9:30 PM

In theory, Nuke could easily be replaced by an OAuth-backed external tool - no risk of causing errors in production, easy for maintainers to improve without being encumbered by all the things that make MediaWiki development slow. OTOH handing out deletion grants to apps is not completely unheard of but still somewhat scary security-wise.

Nikerabbit subscribed.Aug 21 2019, 3:41 PM

DannyS712 subscribed.Mar 7 2020, 8:04 AM

DannyS712 added a comment.Mar 7 2020, 8:55 AM

This comment was removed by DannyS712.

thcipriani removed a project: Release-Engineering-Team (Code Health).Apr 20 2021, 12:00 AM

Zabe subscribed.Oct 13 2021, 10:46 AM

For everyone's info, currently no Code-Stewardship-Reviews are taking place as there is no clear path forward and as this is not prioritized work.
(Entirely personal opinion: I also assume lack of decision authority due to WMF not having a CTO currently. However, discussing this is off-topic for this task.)

Izno subscribed.Jun 3 2022, 7:20 PM

Base subscribed.Aug 4 2022, 8:32 PM

Samwalton9-WMF subscribed.Sep 21 2023, 5:30 PM

The Moderator-Tools-Team have decided to take ownership of this extension moving forward given the topical fit and the fact that we've already done some maintenance work on it. I'll go ahead and update https://www.mediawiki.org/wiki/Developers/Maintainers.

Nuke Extension: Code Stewardship ReviewClosed, ResolvedPublicActions

Description

Intro

Related Objects

Event Timeline

Nuke Extension: Code Stewardship Review
Closed, ResolvedPublic
Actions