RhinosF1 (Samuel)
Volunteer Configurator

Projects (9)
View All

Calendar

User Details

User Since: Dec 27 2018, 1:42 PM (309 w, 5 d)
Availability: Available
IRC Nick: RhinosF1
LDAP User: RhinosF1
MediaWiki User: RhinosF1 [ Global Accounts ]

See meta.wikimedia.org/wiki/User:RhinosF1

A list of valid alts is at https://meta.wikimedia.org/wiki/User:RhinosF1/Alts

Recent Activity
View All

Sat, Nov 30

RhinosF1 added a comment to T381208: Requesting GitLab account activation for King ChristLike1.

@KingChristLike: just to check, have you lost access to your KingChristLike account? I assume that's yours.

Sat, Nov 30, 8:00 PM · GitLab (Account Approval), Release-Engineering-Team

RhinosF1 renamed T381208: Requesting GitLab account activation for King ChristLike1 from Requesting GitLab account activation for [YOUR DEVELOPER ACCOUNT USERNAME HERE] to Requesting GitLab account activation for King ChristLike1.

Sat, Nov 30, 7:57 PM · GitLab (Account Approval), Release-Engineering-Team

Thu, Nov 28

RhinosF1 created T381110: #wikimedia-traffic does not use wikimedia global bans list / wmopbot etc..

Thu, Nov 28, 3:17 PM · Vuln-Misconfiguration, SecTeam-Processed, User-bd808, ircservserv, Traffic, wikimedia-irc-libera, Security-Team, Security

Sat, Nov 23

RhinosF1 added a project to T380681: Title: isValid() is broken for ipv6 addresses: affects-Miraheze.

Sat, Nov 23, 4:59 PM · affects-Miraheze, MediaWiki-General

Thu, Nov 21

RhinosF1 added a project to T270444: Parsoid needs a bidirectional interwiki map (and hooks): affects-Miraheze.

Thu, Nov 21, 1:16 PM · affects-Miraheze, Patch-For-Review, MW-1.36-notes (1.36.0-wmf.25; 2021-01-05), MediaWiki-Interwiki, MediaWiki-Site-system, SiteMatrix, MediaWiki-extensions-InterwikiExtracts, Parsoid

RhinosF1 added a project to T357247: Deprecated: Use of InterwikiLoadPrefix hook: affects-Miraheze.

Thu, Nov 21, 1:11 PM · affects-Miraheze, Patch-For-Review, MediaWiki-extensions-Interwiki

Mon, Nov 18

RhinosF1 added a comment to T379499: [[MediaWiki:Miraheze-requestwiki-error-invalidcomment/fr]] translation issue.

For the record, https://github.com/miraheze/MirahezeMagic/commit/63f32d0609bafbd49ba1c03a38d953c8121afdc1 fixes this

Mon, Nov 18, 4:40 PM · User-RhinosF1, affects-Miraheze, I18n

RhinosF1 added a comment to T379499: [[MediaWiki:Miraheze-requestwiki-error-invalidcomment/fr]] translation issue.

In T379499#10331157, @Aklapper wrote:

As far as I know MirahezeMagic Override does not track its issues in Wikimedia Phabricator? See also the description on https://phabricator.wikimedia.org/project/profile/6096/

Mon, Nov 18, 4:07 PM · User-RhinosF1, affects-Miraheze, I18n

Wed, Nov 13

RhinosF1 claimed T379499: [[MediaWiki:Miraheze-requestwiki-error-invalidcomment/fr]] translation issue.

This feels like it should really be reported downstream to us but it's tiny so I'll just fix it

Wed, Nov 13, 8:40 AM · User-RhinosF1, affects-Miraheze, I18n

Tue, Nov 12

RhinosF1 renamed T379491: PROBLEM - MariaDB Replica SQL: s6 on db2217 is CRITICAL: CRITICAL from PROBLEM - MariaDB Replica SQL: s6 #page on db2217 is CRITICAL: CRITICAL to PROBLEM - MariaDB Replica SQL: s6 on db2217 is CRITICAL: CRITICAL.

Tue, Nov 12, 10:49 AM · Data-Persistence-Automations, DBA

Nov 3 2024

RhinosF1 added a comment to T378896: Deprecated description of "Settings in Google Developer Console" in https://www.mediawiki.org/wiki/Extension:GoogleLogin.

What does this have to do with Gerrit?

Nov 3 2024, 2:05 PM · Documentation, GoogleLogin

Oct 25 2024

RhinosF1 added a project to T378203: changePassword.php should have the option to take the password through stdin: affects-Miraheze.

Oct 25 2024, 6:14 PM · affects-Miraheze, MediaWiki-User-login-and-signup

Oct 22 2024

RhinosF1 added a comment to T377549: Merge Gamepedia table with Wikia table (and perhaps rename Wikia table to Fandom as well?).

That we can do automatically. The stats pull can be told as a one off to follow redirects.

Oct 22 2024, 7:05 AM · VPS-project-Wikistats

Oct 11 2024

RhinosF1 added a member for Trusted-Contributors: PixDeVl.

Oct 11 2024, 10:21 AM

RhinosF1 moved T376597: Enable AutoModerator on afwiki from Backlog to Deployment requests on the Automoderator board.

Oct 11 2024, 10:21 AM · Moderator-Tools-Team (Kanban), Automoderator

Oct 3 2024

RhinosF1 added a comment to T356077: Inbound mail to phabricator doesn't work.

This is a test commebt

Oct 3 2024, 5:06 PM · User-notice-archive, Python3-Porting, Release-Engineering-Team (Priority Backlog 📥), User-brennen, Phabricator, collaboration-services

RhinosF1 added a project to T376392: beta-update-databases-eqiad fails with TypeError: Argument 3 passed to MediaWiki\JobQueue\JobQueueGroupFactory::__construct() must be an instance of Wikimedia\Stats\IBufferingStatsdDataFactory, instance of BufferingStatsdDataFactory given: MediaWiki-Core-JobQueue.

Oct 3 2024, 2:34 PM · MW-1.43-notes (1.43.0-wmf.26; 2024-10-08), MediaWiki-Core-JobQueue, ci-test-error

RhinosF1 created T376392: beta-update-databases-eqiad fails with TypeError: Argument 3 passed to MediaWiki\JobQueue\JobQueueGroupFactory::__construct() must be an instance of Wikimedia\Stats\IBufferingStatsdDataFactory, instance of BufferingStatsdDataFactory given.

Oct 3 2024, 2:34 PM · MW-1.43-notes (1.43.0-wmf.26; 2024-10-08), MediaWiki-Core-JobQueue, ci-test-error

RhinosF1 added projects to T373442: Remove feature flag for hiding invitation list special pages: ci-test-error, Beta-Cluster-Infrastructure.

Oct 3 2024, 10:40 AM · MW-1.43-notes (1.43.0-wmf.26; 2024-10-08), Campaigns-Product-Team (Campaign-Tools-Current-Sprint), CampaignEvents

RhinosF1 added a comment to T373442: Remove feature flag for hiding invitation list special pages.

@Daimona: this has broken beta update databases. See https://integration.wikimedia.org/ci/job/beta-update-databases-eqiad/79353/

Oct 3 2024, 10:39 AM · MW-1.43-notes (1.43.0-wmf.26; 2024-10-08), Campaigns-Product-Team (Campaign-Tools-Current-Sprint), CampaignEvents

RhinosF1 added a comment to T369486: CVE-2024-47841: Path traversal when loading stylesheets from /w/skins/ can load files outside of /w/skins/.

@Mstyles @sbassett: any reason this can't be public

Oct 3 2024, 10:25 AM · Vuln-Misconfiguration, affects-Miraheze, MediaWiki-extensions-CSS, Security, Security-Team

Oct 1 2024

RhinosF1 closed T376209: Setup LDAP account as Invalid.

You can create an LDAP / Developer account at https://idm.wikimedia.org/signup/

Oct 1 2024, 8:28 PM · SRE, wikitech.wikimedia.org

Sep 30 2024

RhinosF1 added a comment to T375454: Request creation of createwikitest VPS project.

It still feels like I'm talking to GPT but

Sep 30 2024, 10:27 AM · affects-Miraheze, Cloud-VPS (Project-requests)

RhinosF1 added a project to T375454: Request creation of createwikitest VPS project: affects-Miraheze.

Sep 30 2024, 7:09 AM · affects-Miraheze, Cloud-VPS (Project-requests)

RhinosF1 added a comment to T375454: Request creation of createwikitest VPS project.

I'm not sure what this is going to gain.

Sep 30 2024, 7:08 AM · affects-Miraheze, Cloud-VPS (Project-requests)

Sep 21 2024

RhinosF1 merged T375323: NodeDownForLong Node cloudvirt1063 has been down for long. into T375223: 2024-09-21 NodeDown cloudvirt1063.

Sep 21 2024, 11:43 AM · cloud-services-team (FY2024/2025-Q1-Q2), Cloud-VPS

RhinosF1 merged task T375323: NodeDownForLong Node cloudvirt1063 has been down for long. into T375223: 2024-09-21 NodeDown cloudvirt1063.

Sep 21 2024, 11:42 AM · cloud-services-team

Sep 18 2024

RhinosF1 updated subscribers of T370632: CVE-2024-47849: Cargo: Backticks can allow the usage of not-allowed SQL functions.

In T370632#10003626, @sbassett wrote:

Thanks, @Yaron_Koren. Miraheze folks - are you ok with us making this task public now? This will also be re-announced within the next supplemental security release.

Sep 18 2024, 8:17 AM · Vuln-Inject, SecTeam-Processed, MediaWiki-extensions-Cargo, affects-Miraheze, Security

Sep 10 2024

RhinosF1 added a project to T374484: Lift IP cap for 190.12.102.194 and 200.5.117.98 on 2024-10-19: Wikimedia-Site-requests.

Sep 10 2024, 7:29 PM · wmde-wikidata-tech, Wikimedia-Site-requests, Wikidata, Commons, Spanish-Sites

RhinosF1 changed Due Date from Sep 18 2024, 10:00 PM to Oct 18 2024, 10:00 PM on T374484: Lift IP cap for 190.12.102.194 and 200.5.117.98 on 2024-10-19.

Sep 10 2024, 7:29 PM · wmde-wikidata-tech, Wikimedia-Site-requests, Wikidata, Commons, Spanish-Sites

RhinosF1 set Due Date to Sep 18 2024, 10:00 PM on T374484: Lift IP cap for 190.12.102.194 and 200.5.117.98 on 2024-10-19.

Sep 10 2024, 7:28 PM · wmde-wikidata-tech, Wikimedia-Site-requests, Wikidata, Commons, Spanish-Sites

RhinosF1 renamed T374484: Lift IP cap for 190.12.102.194 and 200.5.117.98 on 2024-10-19 from Lift IP cap on this date 190.12.102.194 and 200.5.117.98 on 2024-10-19 to Lift IP cap for 190.12.102.194 and 200.5.117.98 on 2024-10-19.

Sep 10 2024, 7:28 PM · wmde-wikidata-tech, Wikimedia-Site-requests, Wikidata, Commons, Spanish-Sites

RhinosF1 added a comment to T371131: Do not autolink shard names (e.g. s1) as Phabricator Spaces.

I imagine paste is probably the far more well used that property.

Sep 10 2024, 5:13 PM · Phabricator (2024-09-10), Release-Engineering-Team (Priority Backlog 📥)

Aug 27 2024

RhinosF1 reopened T369486: CVE-2024-47841: Path traversal when loading stylesheets from /w/skins/ can load files outside of /w/skins/ as "Open".

Reopen so security see at triage

Aug 27 2024, 11:16 AM · Vuln-Misconfiguration, affects-Miraheze, MediaWiki-extensions-CSS, Security, Security-Team

RhinosF1 added a comment to T369486: CVE-2024-47841: Path traversal when loading stylesheets from /w/skins/ can load files outside of /w/skins/.

@Mstyles: can you add this to the supplemental and seek CVE record?

Aug 27 2024, 11:15 AM · Vuln-Misconfiguration, affects-Miraheze, MediaWiki-extensions-CSS, Security, Security-Team

Aug 26 2024

RhinosF1 merged T373319: GUC displays a database error into T373243: DNS on toolforge kubernetes seems to fail regularly (20-25% of the time at least).

Aug 26 2024, 11:25 AM · Toolforge (Toolforge iteration 14)

RhinosF1 merged task T373319: GUC displays a database error into T373243: DNS on toolforge kubernetes seems to fail regularly (20-25% of the time at least).

Aug 26 2024, 11:25 AM · Tool-Global-user-contributions

Aug 23 2024

RhinosF1 added a project to T372626: Browser tests failing in EntitySchema secondary CI: “Schema Viewing Page accepts statements of entity schema data value type”: affects-Miraheze.

Aug 23 2024, 11:37 AM · affects-Miraheze, MW-1.43-notes (1.43.0-wmf.19; 2024-08-20), EntitySchema, wmde-wikidata-tech, Wikidata

RhinosF1 added a project to T372458: Github Actions CI - pull from phabricator.wikimedia.org blocked 429: affects-Miraheze.

Aug 23 2024, 11:35 AM · affects-Miraheze, Patch-For-Review, Wikibase Suite Team (Sprint-∞)

Aug 22 2024

RhinosF1 created T373135: WikiBase should use canonical URL for .gitmodules.

Aug 22 2024, 5:42 PM · affects-Miraheze, Wikibase (3rd party installations)

Aug 11 2024

RhinosF1 added a comment to T367856: Cleanup revision table schema.

In T367856#10056182, @GTrang wrote:

If one is pessimistic, then the enwiki.analytics.db.svc.wikimedia.cloud replag will continue to increase for all eternity. This would mean that the replag would increase to 9,000 hours on August 13, 2025, if this task is still not completed by then. Otherwise, if one is optimistic, then the replag will eventually go back to zero.

Aug 11 2024, 6:12 PM · Data-Engineering (Q2 2024 October 1st - December 31th), Schema-change-in-production, DBA, Data Products

RhinosF1 added a comment to T372224: enwiki.analytics.db.svc.wikimedia.cloud still on replag for more than a week.

Replication lag is normal during these schema changes. It will naturally go down significantly faster than it went up once the change completes.

Aug 11 2024, 6:12 PM · Data-Services

Aug 8 2024

RhinosF1 added a comment to T372022: Decide if AccountVanishRequests locks should be shown by StewardBot.

In T372022#10050428, @Xaosflux wrote:

Lock actions are not secret, so this is certainly not an inappropriate information disclosure problem; no issues with it being turned off if it is useless noise though.

Aug 8 2024, 11:56 AM · SecTeam-Processed, Security-Team, Stewards-and-global-tools, stewardbots

Jul 29 2024

RhinosF1 added a project to T371220: Need to delete unrelated etherpad: collaboration-services.

Jul 29 2024, 6:00 PM · Vuln-Infoleak, Privacy, collaboration-services, Security-Team, Security, Wikimedia-Etherpad

Jul 22 2024

RhinosF1 added a project to T370693: Special:Preferences CSRF vulnerability allows attacker to change an account's Real Name.: MediaWiki-Core-Preferences.

Jul 22 2024, 6:56 PM · SecTeam-Processed, MediaWiki-Core-Preferences, Security, Security-Team

RhinosF1 added a project to T370693: Special:Preferences CSRF vulnerability allows attacker to change an account's Real Name.: Vuln-CSRF.

Jul 22 2024, 6:56 PM · SecTeam-Processed, MediaWiki-Core-Preferences, Security, Security-Team

Jul 8 2024

RhinosF1 added a project to T369486: CVE-2024-47841: Path traversal when loading stylesheets from /w/skins/ can load files outside of /w/skins/: affects-Miraheze.

Jul 8 2024, 8:42 AM · Vuln-Misconfiguration, affects-Miraheze, MediaWiki-extensions-CSS, Security, Security-Team

Jul 2 2024

RhinosF1 added a comment to T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed.

Possible Patch from @TheVoidwalker:

Jul 2 2024, 7:14 AM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

Jul 1 2024

RhinosF1 edited projects for T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed, added: SecTeam-Processed; removed Security-Team.

In T368594#9941121, @sbassett wrote:

In T368594#9941019, @RhinosF1 wrote:

@sbassett: would you mind if this bug was shared wider with the Miraheze team to see if we can look at doing something? It's used quite widely on our farm so I'd rather not see the extension archived if there's the possibility of someone maintaining it.

Should be fine if you want to sub a few relevant Phab users here, to discuss internally. Or even open a new, public Phab bug in regards to ext:CSS owner/maintainership.

Thanks Scott. I've added a few of our team.

Jul 1 2024, 5:42 PM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

RhinosF1 updated subscribers of T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed.

Jul 1 2024, 5:41 PM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

RhinosF1 edited projects for T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed, added: Security-Team; removed SecTeam-Processed.

@sbassett: would you mind if this bug was shared wider with the Miraheze team to see if we can look at doing something? It's used quite widely on our farm so I'd rather not see the extension archived if there's the possibility of someone maintaining it.

Jul 1 2024, 5:16 PM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

RhinosF1 added a project to T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed: affects-Miraheze.

Jul 1 2024, 4:56 PM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

RhinosF1 added a comment to T368594: CVE-2024-47845: Extension:CSS uses CSS sanitizer incorrectly, and is easily bypassed.

In T368594#9940883, @Bawolff wrote:

Cc'ing some people i think are associated with miraheze/wikiforge

Jul 1 2024, 4:53 PM · SecTeam-Processed, affects-Miraheze, Vuln-Inject, MediaWiki-extensions-CSS, Security

Jun 25 2024

RhinosF1 added a comment to T365234: Add dtpwiki to wikistats.

Test - ignore

Jun 25 2024, 3:44 PM · User-RhinosF1, VPS-project-Wikistats

Jun 21 2024

RhinosF1 removed a member for Trusted-Contributors: • Lea_WMDE.

Jun 21 2024, 5:41 PM

Jun 4 2024

RhinosF1 updated subscribers of T366554: Views data integrity compromised by entity running up fake views.

@Aklapper removed projects: Data-Engineering, Analytics-Data-Problem.

Why? @Gehel says this is owned by Data-Engineering

Jun 4 2024, 8:13 AM · Data Products, SecTeam-Processed, Pageviews-Anomaly, Security

RhinosF1 added projects to T366554: Views data integrity compromised by entity running up fake views: Analytics-Data-Problem, Data-Engineering.

Jun 4 2024, 7:13 AM · Data Products, SecTeam-Processed, Pageviews-Anomaly, Security

RhinosF1 added a comment to T188236: Available image not offered as type-ahead search result under VisualEditor's "Insert->Media" (search only returns word matches).

In T188236#9857925, @Igorsolovki wrote:

not sure if it helps but mainpage is saying

Effective June 1, 2021: Phabricator is no longer actively maintained.

I'm not sure what that's got to to do with this task. This is a bug in mediawiki and has nothing to do with the underlying software used to report the bug.

Jun 4 2024, 7:11 AM · VisualEditor, CirrusSearch, Discovery-ARCHIVED

Jun 3 2024

RhinosF1 added a comment to T365230: Post-creation work for dtpwiki.

Both of these will be automatically fixed I believe when the relevant scripts have been ran.

Jun 3 2024, 5:47 AM · Countervandalism-Network, Content-Transform-Team, Wiki-Setup

May 31 2024

RhinosF1 removed projects from T359382: Migrate MediaWiki.loadbalancer.lag to statslib: Security-Team, Security.

May 31 2024, 4:23 PM · SecTeam-Processed, MW-1.43-notes (1.43.0-wmf.7; 2024-05-28), Observability-Metrics

May 28 2024

RhinosF1 closed T365234: Add dtpwiki to wikistats as Resolved.

Wiki Created by @Zabe

May 28 2024, 9:25 AM · User-RhinosF1, VPS-project-Wikistats

RhinosF1 closed T365234: Add dtpwiki to wikistats, a subtask of T365230: Post-creation work for dtpwiki, as Resolved.

May 28 2024, 9:24 AM · Countervandalism-Network, Content-Transform-Team, Wiki-Setup

RhinosF1 changed the status of T365234: Add dtpwiki to wikistats, a subtask of T365230: Post-creation work for dtpwiki, from Stalled to In Progress.

May 28 2024, 9:16 AM · Countervandalism-Network, Content-Transform-Team, Wiki-Setup

RhinosF1 changed the status of T365234: Add dtpwiki to wikistats from Stalled to In Progress.

May 28 2024, 9:14 AM · User-RhinosF1, VPS-project-Wikistats

May 24 2024

RhinosF1 added a comment to T365644: Remote Code Execution on svgtranslate.

In T365644#9827614, @Chocapikk1337 wrote:

I also have another question. I don't think this is necessary. But a CVE ID can be assigned to this bug or not? If yes, how is it going? Do I do the process or do you?

And I want to confirm that the vulnerability is indeed fixed after some tests.

May 24 2024, 6:03 AM · Patch-For-Review, Community-Tech (June 3-14 2024 Arctic Fox), SecTeam-Processed, SVG Translate Tool, Vuln-Inject, Security, Security-Team

May 22 2024

RhinosF1 changed Author Affiliation from product to community on T365644: Remote Code Execution on svgtranslate.

May 22 2024, 9:05 PM · Patch-For-Review, Community-Tech (June 3-14 2024 Arctic Fox), SecTeam-Processed, SVG Translate Tool, Vuln-Inject, Security, Security-Team

May 21 2024

RhinosF1 edited projects for T364060: Degraded RAID on cloudcephosd1031, added: cloud-services-team, Cloud-Services-Origin-Alert; removed Cloud-Services.

May 21 2024, 7:25 PM · Cloud-VPS, Cloud-Services-Origin-Alert, cloud-services-team, DC-Ops, SRE, ops-eqiad

May 14 2024

RhinosF1 closed T364908: QUESTION: Transition to Phorge? as Invalid.

We've been running Phorge since T333885: Migrate phabricator.wikimedia.org to Phorge as upstream

May 14 2024, 7:51 PM · collaboration-services, Phabricator

RhinosF1 edited projects for T364908: QUESTION: Transition to Phorge?, added: Phabricator, collaboration-services; removed Phabricator (2024-05-28).

May 14 2024, 7:49 PM · collaboration-services, Phabricator

May 6 2024

RhinosF1 updated the task description for T364342: Switch Gerrit from Java 11 to Java 17.

May 6 2024, 8:48 PM · Release-Engineering-Team, Gerrit, collaboration-services

May 5 2024

RhinosF1 awarded T364239: Add fox icon / badge to Phabricator a Fox token.

May 5 2024, 4:22 PM · Phabricator (2024-05-05), Release-Engineering-Team, User-brennen, Upstream, Wikimedia-Hackathon-2024

Apr 23 2024

RhinosF1 added projects to T363166: #article-section-source-editor" in edit summaries (dawiki): Wikipedia-iOS-App-Backlog, MediaWiki-Page-editing, Mobile.

Apr 23 2024, 1:42 PM · Wikipedia-iOS-App-Backlog (iOS Release FY2023-24), Mobile, MediaWiki-Page-editing

Apr 21 2024

RhinosF1 added a project to T363068: Please remove 2FA from Vito Genovese Wikimedia SUL account: Trust-and-Safety.

Apr 21 2024, 1:30 PM · SecTeam-Processed, Trust-and-Safety, Security

RhinosF1 lowered the priority of T362986: Notifications are not usable on mobile version of RTL from Unbreak Now! to Needs Triage.

Apr 21 2024, 9:06 AM · Verified, MW-1.43-notes (1.43.0-wmf.2; 2024-04-23), Web-Team-Backlog (FY2023-24 Q4 Sprint 2), MinervaNeue

Apr 20 2024

RhinosF1 created T363049: Patchdemo VM is out of disk space.

Apr 20 2024, 11:49 AM · VPS-Projects

Apr 19 2024

RhinosF1 added projects to T363009: Retire legalpad phabricator/phorge application?: Trust-and-Safety, Znuny.

Adding project tags for areas affected

Apr 19 2024, 6:21 PM · Znuny, Trust-and-Safety, collaboration-services, Phabricator

Apr 3 2024

RhinosF1 added a project to T361735: MuratEvin: Trust-and-Safety.

Apr 3 2024, 7:32 PM · SecTeam-Processed, Trash, Trust-and-Safety

RhinosF1 added a comment to T361735: MuratEvin.

I am discussing this task with a steward on IRC

Apr 3 2024, 7:32 PM · SecTeam-Processed, Trash, Trust-and-Safety

Mar 28 2024

RhinosF1 updated subscribers of T297942: Specific PDF on Commons has no image thumbnails, dimensions shown as 0x0 pixels.

11:04:05 <@Urbanecm> RhinosF1: wargo: i tired, it did not help. however, manually constructing the URL where the thumbnail is supposed to be (https://upload.wikimedia.org/wikipedia/commons/thumb/archive/8/82/20230929224435%21PL_JI_Kraszewski_Zygzaki.djvu/page1-87px-PL_JI_Kraszewski_Zygzaki.djvu.jpg) appears to have worked

Mar 28 2024, 11:05 AM · MediaWiki-extensions-PdfHandler, Commons

RhinosF1 added a project to T297942: Specific PDF on Commons has no image thumbnails, dimensions shown as 0x0 pixels: Wikimedia-maintenance-script-run.

In T297942#9644062, @Wargo wrote:

Maybe RefreshImageMetadata.php on PL_JI_Kraszewski_Zygzaki.djvu would help?

Mar 28 2024, 9:53 AM · MediaWiki-extensions-PdfHandler, Commons

Mar 26 2024

RhinosF1 updated the task description for T353904: Write and send supplementary release announcement for extensions and skins with security patches (1.39.7/1.40.3/1.41.1).

Mar 26 2024, 4:08 PM · affects-Miraheze, user-sbassett, MediaWiki-Releasing, Security

Mar 19 2024

RhinosF1 added a comment to T353904: Write and send supplementary release announcement for extensions and skins with security patches (1.39.7/1.40.3/1.41.1).

In T353904#9642344, @sbassett wrote:

In T353904#9641879, @RhinosF1 wrote:

I added the ManageWiki one too.

Thanks. @Mstyles - we should plan to include these with the upcoming release, and I don't think we need to worry about any release-branch backports for them.

Mar 19 2024, 2:41 PM · affects-Miraheze, user-sbassett, MediaWiki-Releasing, Security

RhinosF1 added a comment to T353904: Write and send supplementary release announcement for extensions and skins with security patches (1.39.7/1.40.3/1.41.1).

In T353904#9529744, @sbassett wrote:

In T353904#9526984, @RhinosF1 wrote:

I've added https://github.com/miraheze/WikiDiscover/security/advisories/GHSA-cfcf-94jv-455f to the tracker listing the GSHA as there's no task for it on Wikimedia. WikiTide have requested the CVE.

Thanks.