@mmodell. Sorry for getting this in late, as I know you were just merging a change here.
Here is the pickle. We want #Security-related to be named security but the mechanism for Protect as security issue calls the project by name. I have added the alias for acl*security (seems to noralize to acl_security) to the current #security project details.
If we update the mechanism from
$projects = WMFSecurityPolicy::getProjectByName('security');
$projects = WMFSecurityPolicy::getProjectByName('acl_security');
will this do the Right Thing (TM) with just the alias? I think yes, and if so could you please update this?