https://bugzilla.wikimedia.org/show_bug.cgi?id=42814
--- Comment #3 from Chris Steipp <[email protected]> --- As I accidentally posted on bug 42816... I think the basis of the leak is that the special page only filters the result for a filter id if the user has the permission 'abusefilter-log-private' or 'abusefilter-view-private' (SpecialAbuseLog around line 225). The api doesn't seem to check for this. Should be easy to check for. Additionally, the api always lists the filter_id that triggered the log entry, whereas the special page gives the generic "an abuse filter". Gerrit 37989 -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
