Page MenuHomeMiraheze

CSP ReviewTag
ActivePublic

Members

  • This project does not have any members.
  • View All

Watchers (2)

Details

Description

This is a tag to track and monitor the progress of all tasks that relate to the Content Security Policy and reviews associated with the CSP Policy.

Recent Activity

Sun, Mar 24

Dmehus added a comment to T11867: CSP review for 1.1.1.1.

@Dmehus The new process has indeed reverted to SRE and no longer involves T&S.

Sun, Mar 24, 18:27 · MediaWiki (SRE), CSP Review
Universal_Omega moved T11867: CSP review for 1.1.1.1 from DSRE Review to Pending Addition on the CSP Review board.
Sun, Mar 24, 06:24 · MediaWiki (SRE), CSP Review
Universal_Omega moved T11867: CSP review for 1.1.1.1 from SRE Review to DSRE Review on the CSP Review board.
Sun, Mar 24, 06:22 · MediaWiki (SRE), CSP Review
Reception123 updated the task description for T11867: CSP review for 1.1.1.1.
Sun, Mar 24, 06:22 · MediaWiki (SRE), CSP Review
Reception123 removed a project from T11867: CSP review for 1.1.1.1: Trust & Safety.

@Dmehus The new process has indeed reverted to SRE and no longer involves T&S.

Sun, Mar 24, 06:03 · MediaWiki (SRE), CSP Review

Sat, Mar 23

Dmehus added a project to T11867: CSP review for 1.1.1.1: Trust & Safety.
Sat, Mar 23, 23:32 · MediaWiki (SRE), CSP Review
Dmehus added a comment to T11867: CSP review for 1.1.1.1.

Does Trust and Safety still handle the portion of CSP reviews as they relate to privacy and data protection, under the new WikiTide Foundation, or has it fully reverted to the SRE team?

Sat, Mar 23, 23:31 · MediaWiki (SRE), CSP Review
Universal_Omega closed T11752: CSP review: istpcomputing.com as Declined.

@Intp given the above, unless this is still necessary, this is declined as unnecessary. If this is still necessary pleass feel free to reopen.

Sat, Mar 23, 16:24 · CSP Review, MediaWiki (SRE), MediaWiki

Mar 6 2024

Original_Authority added a comment to T11752: CSP review: istpcomputing.com.
In T11752#236162, @Intp wrote:

I think the wiki needs the following extension installed to upload / render images from an external repository.

https://www.mediawiki.org/wiki/Extension:AWS

Simply whitelisting may not work.

Thanks,

User Intp

Mar 6 2024, 10:40 · CSP Review, MediaWiki (SRE), MediaWiki

Feb 18 2024

Reception123 triaged T11867: CSP review for 1.1.1.1 as Normal priority.

Since you're part of the SRE team, feel free to do the initial review yourself if you want (which is then subject to approval by the DSRE). If not, I'll try to get to it next week.

Feb 18 2024, 20:55 · MediaWiki (SRE), CSP Review
OrangeStar added a comment to T11867: CSP review for 1.1.1.1.

Had to change to Cloudflare's 1.1.1.1 because Quad9 doesn't serve CORS headers, while Cloudflare does.

Feb 18 2024, 17:56 · MediaWiki (SRE), CSP Review
OrangeStar renamed T11867: CSP review for 1.1.1.1 from CSP review for dns.quad9.net to CSP review for 1.1.1.1.
Feb 18 2024, 17:55 · MediaWiki (SRE), CSP Review
OrangeStar updated the task description for T11867: CSP review for 1.1.1.1.
Feb 18 2024, 17:03 · MediaWiki (SRE), CSP Review
OrangeStar created T11867: CSP review for 1.1.1.1.
Feb 18 2024, 16:49 · MediaWiki (SRE), CSP Review

Feb 7 2024

Agent_Isai closed T11776: CSP review for cms-imgp.jw-cdn.org as Resolved.

Added to CSP. Puppet will deploy this change in ~30 minutes or less.

Feb 7 2024, 15:19 · CSP Review, MediaWiki (SRE)

Feb 5 2024

Universal_Omega changed the status of T11776: CSP review for cms-imgp.jw-cdn.org from Open to In progress.
Feb 5 2024, 08:05 · CSP Review, MediaWiki (SRE)
Universal_Omega moved T11776: CSP review for cms-imgp.jw-cdn.org from Backlog to Short Term on the MediaWiki (SRE) board.
Feb 5 2024, 08:05 · CSP Review, MediaWiki (SRE)
Universal_Omega moved T11776: CSP review for cms-imgp.jw-cdn.org from DSRE Review to Pending Addition on the CSP Review board.

I see no concerns with this.

Feb 5 2024, 08:05 · CSP Review, MediaWiki (SRE)
Reception123 assigned T11776: CSP review for cms-imgp.jw-cdn.org to Universal_Omega.

Checklist is fulfilled and no real concerns with this website.

Feb 5 2024, 07:45 · CSP Review, MediaWiki (SRE)
Reception123 updated the task description for T11776: CSP review for cms-imgp.jw-cdn.org.
Feb 5 2024, 07:44 · CSP Review, MediaWiki (SRE)

Feb 4 2024

OrangeStar triaged T11776: CSP review for cms-imgp.jw-cdn.org as Normal priority.
Feb 4 2024, 12:15 · CSP Review, MediaWiki (SRE)
Intp added a comment to T11752: CSP review: istpcomputing.com.

I think the wiki needs the following extension installed to upload / render images from an external repository.

Feb 4 2024, 11:03 · CSP Review, MediaWiki (SRE), MediaWiki
Intp added a comment to T11752: CSP review: istpcomputing.com.

I have created a privacy policy at: https://www.istpcomputing.com/wiki/ISTP_Computing:Privacy_policy

Feb 4 2024, 10:57 · CSP Review, MediaWiki (SRE), MediaWiki

Feb 2 2024

Reception123 added a comment to T11752: CSP review: istpcomputing.com.

Hi. We have a strict policy regarding CSP whitelists to protect privacy and security. Therefore, the website to be whitelisted will need a Privacy Policy (even if minimal) at the very least to be added.

Feb 2 2024, 17:00 · CSP Review, MediaWiki (SRE), MediaWiki
Reception123 renamed T11752: CSP review: istpcomputing.com from Render images stored in external repository to CSP review: istpcomputing.com.
Feb 2 2024, 16:59 · CSP Review, MediaWiki (SRE), MediaWiki
Reception123 closed T11562: Request rbxcdn.com CSP entry as Resolved.
Feb 2 2024, 16:36 · CSP Review, MediaWiki (SRE)

Feb 1 2024

Universal_Omega moved T11562: Request rbxcdn.com CSP entry from DSRE Review to Pending Addition on the CSP Review board.

I was initially kind of on the edge with this one due to unclear security precautions but upon further investigation and research into it it's just a CDN that doesn't seem to contain any other information, and is no different then some of the other ones we have approved, so this likes fine to me.

Feb 1 2024, 12:04 · CSP Review, MediaWiki (SRE)

Jan 31 2024

Reception123 closed T11475: CSP Reviews: wakingsands.com & bilibili.com as Declined.

wakingsands.com is provisionally declined as I'm unable to find any Privacy Policy. Please reopen this task if you're able to point me to a Privacy Policy for wakingsands.com.

Jan 31 2024, 20:35 · CSP Review, MediaWiki (SRE)
Reception123 moved T11562: Request rbxcdn.com CSP entry from T&S Review to DSRE Review on the CSP Review board.
Jan 31 2024, 20:32 · CSP Review, MediaWiki (SRE)
Reception123 closed T11129: Add bandcamp.com to CSP as Resolved.
Jan 31 2024, 20:32 · CSP Review, MediaWiki (SRE)

Jan 30 2024

ThousanRaine added a comment to T11475: CSP Reviews: wakingsands.com & bilibili.com.

I understand. Thank you for your reply. I wish you a pleasant day today :)

Jan 30 2024, 19:06 · CSP Review, MediaWiki (SRE)
Reception123 closed T11269: Allow google fonts in content security policy as Resolved.
Jan 30 2024, 18:07 · Trust & Safety, CSP Review
Reception123 added a comment to T11475: CSP Reviews: wakingsands.com & bilibili.com.

Per T9252, I'm inclined to decline bilibili.com as the concerns expressed are likely unchanged.

Jan 30 2024, 18:03 · CSP Review, MediaWiki (SRE)
Universal_Omega moved T11129: Add bandcamp.com to CSP from Backlog to Short Term on the MediaWiki (SRE) board.
Jan 30 2024, 17:26 · CSP Review, MediaWiki (SRE)
Universal_Omega moved T11129: Add bandcamp.com to CSP from SRE Review to Pending Addition on the CSP Review board.
Jan 30 2024, 17:26 · CSP Review, MediaWiki (SRE)

Jan 28 2024

Original_Authority added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

I've PR'd to fix all of those issues.

Jan 28 2024, 19:56 · Upstream, Extensions, MediaWiki (SRE)
OrangeStar added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

This potentially can't be installed due to how the skin is in a sub directory, which doesn't necessarily work with our setup but maybe I can fix support for it.

Jan 28 2024, 12:45 · Upstream, Extensions, MediaWiki (SRE)
OrangeStar changed the status of T11547: Install “Fluent” theme on wanderingstars.miraheze.org from Open to Stalled.
Jan 28 2024, 12:44 · Upstream, Extensions, MediaWiki (SRE)
OrangeStar added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

Another blocker https://github.com/immewnity/mediawiki-fluent/issues/19

Jan 28 2024, 12:15 · Upstream, Extensions, MediaWiki (SRE)
OrangeStar added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

installation is also blocked by https://github.com/immewnity/mediawiki-fluent/issues/13 btw

Jan 28 2024, 10:37 · Upstream, Extensions, MediaWiki (SRE)

Jan 27 2024

Original_Authority added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

Also https://github.com/immewnity/mediawiki-fluent/issues/17 request to move it outside the folder into the root of the repo.

Jan 27 2024, 20:20 · Upstream, Extensions, MediaWiki (SRE)
OrangeStar added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

https://github.com/immewnity/mediawiki-fluent/issues/16

Jan 27 2024, 20:10 · Upstream, Extensions, MediaWiki (SRE)

Jan 26 2024

Reception123 assigned T11562: Request rbxcdn.com CSP entry to Universal_Omega.

Based on the above, it seems to mostly satisfy the checklist so I'd recommend approval.

Jan 26 2024, 14:29 · CSP Review, MediaWiki (SRE)
Reception123 assigned T11129: Add bandcamp.com to CSP to Universal_Omega.

While not everything on the checklist is prevent the Privacy Policy seems adequate to me and given the nature of the website I think it should be okay to approve. Assigning to @Universal_Omega for final approval.

Jan 26 2024, 14:28 · CSP Review, MediaWiki (SRE)
Reception123 updated the task description for T11129: Add bandcamp.com to CSP.
Jan 26 2024, 14:27 · CSP Review, MediaWiki (SRE)
Reception123 updated the task description for T11129: Add bandcamp.com to CSP.
Jan 26 2024, 14:27 · CSP Review, MediaWiki (SRE)

Jan 23 2024

OrangeStar added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

I found some easy issues on the skin's issue tracker and will be working on them for a while. I will also try to see if I can get that CDN changed to jsdelivr, which is in our CSP, let's see what the maintainer thinks.

Jan 23 2024, 19:45 · Upstream, Extensions, MediaWiki (SRE)
Universal_Omega added a comment to T11547: Install “Fluent” theme on wanderingstars.miraheze.org.

This potentially can't be installed due to how the skin is in a sub directory, which doesn't necessarily work with our setup but maybe I can fix support for it.

Jan 23 2024, 19:38 · Upstream, Extensions, MediaWiki (SRE)
Redmin placed T11547: Install “Fluent” theme on wanderingstars.miraheze.org up for grabs.

This will now need a CSP review as the skin loads styles from an external website by default.

Jan 23 2024, 19:06 · Upstream, Extensions, MediaWiki (SRE)

Jan 10 2024

LXanders added a comment to T11269: Allow google fonts in content security policy.

I'd still like to use fonts from Google fonts on my wiki. I didn't see the previous mail before the issue was closed

Jan 10 2024, 09:14 · Trust & Safety, CSP Review