Page MenuHomePhabricator

Compile, organize and schedule various Wikimedia security-related user audits
Open, MediumPublic

Description

There are a handful of user audits that the Security-Team should be regularly performing:

  1. T237696: Wikimedia deployers audit
  2. {https://phabricator.wikimedia.org/T252465}
  3. T245526: Audit @wikimedia GitHub org access (2020)
  4. {https://phabricator.wikimedia.org/T225069}
  5. {https://phabricator.wikimedia.org/T263784}

Likely some others too, which we should catalog here and automate/schedule in the simplest way possible.

Event Timeline

sbassett created this task.Jun 1 2020, 9:27 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 1 2020, 9:27 PM
sbassett triaged this task as Medium priority.Jun 1 2020, 9:27 PM
sbassett added a project: Security-Team.
sbassett moved this task from Incoming to Back Orders on the Security-Team board.
sbassett removed sbassett as the assignee of this task.Jun 29 2020, 3:35 PM
sbassett updated the task description. (Show Details)Sep 15 2020, 9:32 PM
sbassett updated the task description. (Show Details)Sep 24 2020, 7:57 PM
Peachey88 moved this task from Backlog to config on the Wikimedia-GitHub board.Sun, Nov 22, 4:42 AM