As discussed within the Security-Team Slack channel, it would be useful to have a comprehensive maintenance script that could delete as much MediaWiki-related data for a given user as possible. The obvious use-case for such a script would be certain RTBF-related requests, but there are likely other, similar use-cases beyond this. Some good starting points for such a script would likely be existing maintenance scripts like:
- ChangePassword.php
- InvalidateUserSessions.php
- NukePage.php
- ResetUserEmail.php
- ResetUserTokens.php
- UserOptions.php
- Various "Delete" maintenance scripts, such as DeleteArchivedRevisions.php, DeleteLocalPasswords.php, etc.
I would also note that this need not be comprehensive upon the first iteration and will likely need to change over time.