Phabricator Username: Pchelolo
Reasons For Request: I'm a WMF employee and this somehow has never been done.
Phabricator Username: Pchelolo
Reasons For Request: I'm a WMF employee and this somehow has never been done.
See https://www.mediawiki.org/wiki/Security/SOP/Access_to_Phabricator_Security_Issues for requirements.
Not sure how much Security Team will insist on linking your Phab account to PPchelko_(WMF) instead of current Pchelolo, but in any case you will have to enable 2FA for @Pchelolo - see https://www.mediawiki.org/wiki/Phabricator/Help#Multi-factor_authentication
I'm Petr's manager on the Core Platform Team, as part of his work diagnosing and repairing issues on services infrastructure Petr will need to be able to access private security bugs.
If access is being requested as part of work as staff then the staff account associated is expected. I can talk to the team about when to make exceptions but it's not without reason in that (WMF) accounts are restricted and verify to some extent identity. Also, if this request was from a communities standpoint it would require a sponsor and reasoning outside of the scope of employment for WMF as that would not be in play for reasoning.
Clarifying note: we are talking about the WMF on-wiki account linked to your phab profile. The phab username has no enforced conventions. Some use WMF in the name and some do not. While we would probably deny non-WMF folks having WMF in their name on phab for sanity reasons there isn't any policy or expectation other than that. Just wanted to be clear.
I've relinked my Phabricator account (@Pchelolo) to WMF account on mediawiki.org User:PPchelko (WMF) - would that be enough?
you got it. I see MFA and manager approval here already for an active WMF employee. I can see the need from your role clearly. So I'll go ahead and get this done.