Maniphest T421766

Android and iOS app repos on GitHub lack security policies
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Reedy
	Mar 30 2026, 6:49 PM

Tags

Referenced Files

None

Subscribers

Description

Both https://github.com/wikimedia/apps-android-wikipedia and https://github.com/wikimedia/wikipedia-ios lack a security policy wrt how and where to reports security bugs.

It doesn't need to be comprehensive, but at bare minimum something like https://github.com/wikimedia/mediawiki/blob/master/SECURITY, or else a more specific way to report the bugs (such as the security form on Phabricator).

Event Timeline

Reedy created this task.Mar 30 2026, 6:49 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 30 2026, 6:49 PM

dbrant opened https://github.com/wikimedia/wikipedia-ios/pull/5761

dbrant opened https://github.com/wikimedia/apps-android-wikipedia/pull/6466

Williamrai closed https://github.com/wikimedia/apps-android-wikipedia/pull/6466

mazevedofs closed https://github.com/wikimedia/wikipedia-ios/pull/5761

Mazevedo edited projects, added Wikipedia-iOS-App-Backlog (Wikipedia iOS Release FY2025-26); removed Wikipedia-iOS-App-Backlog (Bug Backlog).Mar 31 2026, 3:11 PM

Mazevedo moved this task from Tasks from Product Backlog to Ready for PM Signoff on the Wikipedia-iOS-App-Backlog (Wikipedia iOS Release FY2025-26) board.

Seddon moved this task from Ready for PM Signoff to Ready for Release on the Wikipedia-iOS-App-Backlog (Wikipedia iOS Release FY2025-26) board.Mar 31 2026, 5:38 PM

Dbrant closed this task as Resolved.Apr 2 2026, 12:14 PM

Dbrant claimed this task.