Create an SOP for handling of Cloud/Toolforge open vulnerability issues
Open, MediumPublic
Actions

Assigned To

None

Authored By

	• chasemp
	Dec 9 2019, 6:04 PM

Description

We have a number of open XSS and other vulnerability and compliance issues for Cloud VPS projects and/or Toolforge tools. We need to document and communicate what our process is for dealing with these. It's topical as some of these projects are abandoned, many are run by folks with minimal free time, folks who may need a bit of sheparding on what to do, but in the end we cannot allow applications with exploitable issues to remain online indefinitely.

Event Timeline

• chasemp triaged this task as Medium priority.Dec 9 2019, 6:04 PM

• chasemp created this task.

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 9 2019, 6:04 PM

sbassett subscribed.Dec 9 2019, 6:05 PM

Peachey88 subscribed.Dec 9 2019, 7:06 PM

aborrero added a project: cloud-services-team (Kanban).Dec 10 2019, 10:01 AM

aborrero moved this task from Inbox to Watching on the cloud-services-team (Kanban) board.

• chasemp moved this task from Incoming to Back Orders on the Security-Team board.Dec 11 2019, 7:22 PM

• chasemp added a project: Security.Feb 10 2020, 10:56 PM

• chasemp removed a project: acl*security.Feb 20 2020, 8:06 PM

taavi subscribed.Feb 23 2021, 1:21 PM

Reedy added a project: Documentation.Sep 2 2021, 4:59 PM

Reedy removed a subscriber: • chasemp.

fnegri edited projects, added cloud-services-team; removed cloud-services-team (Kanban).Jan 18 2023, 6:40 PM

fnegri moved this task from Kanban to Watching on the cloud-services-team board.

fnegri moved this task from Unsorted to Security on the Cloud-VPS board.Jul 11 2023, 10:48 AM

Create an SOP for handling of Cloud/Toolforge open vulnerability issuesOpen, MediumPublicActions

Description

Event Timeline

Create an SOP for handling of Cloud/Toolforge open vulnerability issues
Open, MediumPublic
Actions