[go: up one dir, main page]
Page MenuHomePhabricator
Create Task
Maniphest T258306

Security Readiness Review For Suggestor
Closed, DeclinedPublic
Actions

Description

Project Information

Description of the tool/project: Suggestor is intended to allow Tor users (but open to anyone really) to suggest edits that other, logged-in users can then approve and take responsibility for under their own account (via OAuth). In this way Tor users can maintain their privacy, have their contribution be added to wikis, not violate the spirit of the Tor blocking, as other users are making the edit on their behalf.

Description of how the tool will be used at WMF:

  • A JavaScript module will be added to Extension:TorBlock offering Tor users the opportunity to send their edit through Suggestor (happens client-side)
  • Suggestor performs some basic sanity/anti-abuse measures (e.g. SpamBlacklist, ORES) checks on the proposed edits
  • Wiki users logged in via OAuth can review and approve/reject edits from the queue. Each edit is made under the reviewers account, as they are taking responsibility for the edit.

Dependencies

List dependencies, or upstream projects that this project relies on.

Suggestor is being rewritten in Rust. Dependencies will be in Cargo.{toml,lock}, I can list them here if you'd like.

Has this project been reviewed before?

Please link to tasks or wiki pages of previous reviews.

No.

Working test environment

Please link or describe setup process for setting up a test environment.

TBD.

Post-deployment

Name of team responsible for tool/project after deployment and primary contact.

Same team

Comments
While most of the code being written is primarily for Toolforge, which is out of scope of the security team's reviews, some will be integrated into TorBlock, which is in scope. I'd also especially like to make sure we're not undermining TorBlock's technical measures.

Related Objects
Search...

StatusSubtypeAssignedTask
 OpenNoneT258302 Rollout Suggestor
 DeclinedNoneT258306 Security Readiness Review For Suggestor

Event Timeline

Legoktm created this task.Jul 17 2020, 10:43 PM
Restricted Application added a project: secscrum. · View Herald TranscriptJul 17 2020, 10:43 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Legoktm added a parent task: T258302: Rollout Suggestor.Jul 17 2020, 10:45 PM
DannyS712 subscribed.Jul 18 2020, 4:51 AM

@Legoktm https://www.mediawiki.org/wiki/Suggestor links to https://tools.wmflabs.org/suggestor/ which just redirects to https://wikitech.wikimedia.org/wiki/Portal:Toolforge - can you please update the documentation regarding how to access the tool?

sbassett changed the task status from Open to Stalled.Jul 20 2020, 4:57 PM
sbassett triaged this task as Low priority.
sbassett moved this task from Incoming to Back Orders on the secscrum board.
sbassett subscribed.

I'm going to stall this as low until we have a more concrete deployment date and an agreed-upon commit sha at which to freeze the new Rust code base for the review. Also - just to set expectations - we don't have an enormous amount of experience auditing Rust apps, so this will likely be more of a due-diligence review.

Bodhi_Tri claimed this task.Aug 11 2020, 11:42 PM
DannyS712 removed Bodhi_Tri as the assignee of this task.Aug 11 2020, 11:47 PM
DannyS712 added a subscriber: Bodhi_Tri.
DannyS712 removed a subscriber: Bodhi_Tri.
sbassett lowered the priority of this task from Low to Lowest.Sep 2 2020, 4:20 PM
Jcross removed projects: Application Security Reviews, secscrum.Feb 9 2021, 4:53 PM
Jcross subscribed.

Untagging as there has been no activity. Please feel free to re-tag if this moves forward and we will be happy to triage.

RhinosF1 subscribed.Feb 9 2021, 5:07 PM
Aklapper added a project: Application Security Reviews.Feb 14 2021, 12:17 PM

This task is a Security Readiness Review request, so this task should be tagged with Application Security Reviews which allows to find all and any security readiness review requests by looking at tasks tagged with Application Security Reviews.
If this task is not an actionable review request, then please set its task status to "stalled". Once this task becomes actionable, please change back the task status to "open".
Thanks.

Restricted Application added a project: secscrum. · View Herald TranscriptFeb 14 2021, 12:17 PM
Aklapper removed a project: secscrum.Feb 14 2021, 12:19 PM
Restricted Application added a project: secscrum. · View Herald TranscriptFeb 14 2021, 12:19 PM
Aklapper added a comment.Feb 14 2021, 12:19 PM

That Herald rule makes no sense.

JBennett closed this task as Declined.Apr 8 2021, 3:53 PM
JBennett subscribed.

The Security team is updating their readiness review SOP to reflect a new change that any request that has aged 90 days without being in a reviewable state will be declined. We do this to help keep our work area current, accurate and reflective of actual work. If the status of your project changes please re-tag us and we will get this work scheduled.

Jcross removed projects: secscrum, Application Security Reviews.Apr 8 2021, 6:37 PM
Aklapper added a project: Application Security Reviews.Apr 9 2021, 7:29 AM

@Jcross: Please do not remove correct metadata as it makes it harder to find tasks. This is and was a security readiness review request (which has been declined). Thanks.

Restricted Application added a project: secscrum. · View Herald TranscriptApr 9 2021, 7:29 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits