[go: up one dir, main page]
Page MenuHomePhabricator
Create Task
Maniphest T353393

Request to add jhsoby to WMF-NDA group
Closed, ResolvedPublic
Actions

Description

Hi, I'd like to be added to the WMF-NDA group. The security issues I'm interested in helping solve are related to Vuln-XSS, especially fixing such issues (such as T353316/T340221) in a way that doesn't involve using wgRamHtmlMessages (which complicates things for translators over in Translatewiki). In addition to the first task I mentioned, I have already been involved in fixing such issues in T204470 and T154891/T204470.

Adding a few WMF employees who will probably support my request in CC.

Related Objects
Search...

Event Timeline

jhsoby created this task.Dec 13 2023, 10:45 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 13 2023, 10:45 PM
Ladsgroup awarded a token.Dec 14 2023, 11:00 AM
Aklapper awarded a token.Dec 17 2023, 10:57 AM

Following https://wikitech.wikimedia.org/wiki/Volunteer_NDA I added you to WMF-NDA-Requests so you should be able to sign L2

jhsoby added a comment.Dec 17 2023, 1:07 PM
In T353393#9411660, @Aklapper wrote:

Following https://wikitech.wikimedia.org/wiki/Volunteer_NDA I added you to WMF-NDA-Requests so you should be able to sign L2

Thanks, done!

taavi subscribed.Dec 17 2023, 4:28 PM

Note that the WMF-NDA group does not actually grant view access to security issues, the group for that is acl*security which is managed via https://www.mediawiki.org/wiki/Security/SOP/Access_to_Phabricator_Security_Issues.

jhsoby added a comment.Dec 17 2023, 8:19 PM
In T353393#9411776, @taavi wrote:

Note that the WMF-NDA group does not actually grant view access to security issues, the group for that is acl*security which is managed via https://www.mediawiki.org/wiki/Security/SOP/Access_to_Phabricator_Security_Issues.

Yes, that's the one I'm trying to follow; the second step in that process is to seemingly do this different but mostly overlapping process in wikitech:Volunteer NDA, so I guess I'm doing both? 😅

jhsoby mentioned this in T354607: Security Issue Access Request for jhsoby.Jan 9 2024, 10:46 AM
Mstyles subscribed.Feb 20 2024, 11:16 PM

Katie Francis from Legal confirmed that the NDA has been signed and now I'm going to get @jhsoby added to the WMF-NDA once I find a policy admin to do it

jhsoby added a comment.Feb 21 2024, 11:01 AM

Thanks! :)

sbassett closed this task as Resolved.Feb 22 2024, 5:00 PM
sbassett claimed this task.
sbassett triaged this task as Low priority.
sbassett moved this task from Backlog to WMF Employees on the WMF-NDA-Requests board.
sbassett subscribed.

Per @Mstyles comment above, adding @jhsoby to WMF-NDA and resolving this task.

sbassett added a subtask: T354607: Security Issue Access Request for jhsoby.Feb 22 2024, 5:02 PM
Mstyles closed subtask T354607: Security Issue Access Request for jhsoby as Resolved.Feb 22 2024, 6:14 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits