Lucas_Werkmeister_WMDE added projects: wdwb-tech, Sustainability (Incident Followup). Lucas_Werkmeister_WMDE added a comment.
Wikibase’s homegrown template system has recently caused several security vulnerabilities (primarily T339111: CVE-2023-37302: Style injection into badges on Wikidata due to unescaped quotes <https://phabricator.wikimedia.org/T339111>; Escape messages in TermsListView <https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Wikibase/+/932416> was just merged on master since it was found before the vulnerable code was deployed anywhere). I suggest we prioritize this migration. TASK DETAIL https://phabricator.wikimedia.org/T91067 EMAIL PREFERENCES https://phabricator.wikimedia.org/settings/panel/emailpreferences/ To: Lucas_Werkmeister_WMDE Cc: Lucas_Werkmeister_WMDE, WMDE-leszek, Aleksey_WMDE, Ricordisamoa, thiemowmde, adrianheine, Jdouglas, Aklapper, daniel, Astuthiodit_1, karapayneWMDE, Invadibot, maantietaja, ItamarWMDE, Akuckartz, PatsagornY, Nandana, jijiki, Klaas_Z4us_V, Lahi, Gq86, GoranSMilovanovic, QZanden, LawExplorer, elukey, _jensen, rosalieper, Scott_WUaS, Wikidata-bugs, aude, Mbch331, Jay8g, ori
_______________________________________________ Wikidata-bugs mailing list -- wikidata-bugs@lists.wikimedia.org To unsubscribe send an email to wikidata-bugs-le...@lists.wikimedia.org
