Thijs/wiki.techinc.nl

Current configuration on the wiki

Find a file

Dreamy Jazz 9d39b05391 Update git submodules * Update extensions/AbuseFilter from branch 'REL1_43' to bc7e84a07c991ebd9251fb7d0cfb5829af50cbaf - SECURITY: Check protected variable access in CheckMatch API Why: * The AbuseFilter 'abusefiltercheckmatch' API allows users to check if abuse_filter_log rows or recentchange rows match against a provided pattern. * This currently does not check if the pattern attempts to match against protected variables that may be present in the variables generated for either the RecentChange or abuse_filter_log row. ** This allows users to trial-and-error work out the value of protected variables when they do not have access to the variables. * This should not be possible and proper access restrictions for protected variables should be applied. ** This includes logging when a caller is matching against protected variable values to avoid trial-and-error matching allowing an authorised user to see the value without creating a log entry. What: * Update CheckMatch::execute to: Reject attempts to match using a pattern that contains protected variables that the user cannot see the value of. Reject attempts to match against abuse_filter_log rows that have protected variable values that the user cannot see to be consistent with Special:AbuseLog access restrictions. ** Log when the provided pattern uses protected variables that have a value in the variable dump. * Add tests to verify this fix works. Bug: T397196 Change-Id: I5f02572b94760141f6f57873409469318f441e18		2025-07-23 13:52:08 +00:00
.phan	structure tests: allow PHP 8.1 syntax and autoload enums	2025-06-18 10:55:15 +01:00
cache	In .htaccess deny files, use "Satisfy All"	2025-04-04 13:17:15 +00:00
docs	[REST Sandbox] Remove SwaggerUI from MediaWiki Releases	2025-06-30 16:05:49 +01:00
extensions	Update git submodules	2025-07-23 13:52:08 +00:00
images	Set "X-Content-Type-Options: nosniff" header in images/.htaccess	2023-02-24 23:59:22 -05:00
includes	rdbms: Fix GTID style detection for MySQL servers	2025-07-18 20:46:50 +00:00
languages	Localisation updates from https://translatewiki.net .	2025-07-15 07:33:49 +02:00
maintenance	Fix attachLatest --regenerate-all creating invalid SQL command	2025-07-23 11:06:39 +00:00
mw-config	installer: Fix class name in example override	2025-01-25 15:07:10 +00:00
resources	docs: Add link to CORS setting for REST API	2025-07-16 11:53:21 +00:00
skins	Update git submodules	2025-07-22 06:48:03 +00:00
tests	ParserCacheSerializationTestCases: distinguish empty ToC from missing ToC	2025-07-23 01:31:23 +00:00
vendor@ff925b8b4d	Update git submodules	2025-07-01 12:49:08 +00:00
.dockerignore	Fix a typo in .dockerignore	2020-12-05 10:15:14 +01:00
.editorconfig	Fix .editorconfig for tests/parser/ directory	2024-02-27 17:35:16 +01:00
.eslintignore	REST: validate JSON in tests	2024-09-20 15:42:32 +00:00
.eslintrc.json	eslint: Only apply client rules to client files	2022-02-09 02:40:11 +00:00
.fresnel.yml	Add explanatory comment for .fresnel.yml	2022-02-01 20:32:20 -05:00
.git-blame-ignore-revs	Add .git-blame-ignore-revs	2024-06-02 23:03:04 +02:00
.gitattributes	.gitattributes: Ship docker-compose.yml to the tarball	2022-11-30 09:37:13 -05:00
.gitignore	Branch commit for REL1_43	2024-10-22 12:47:33 -04:00
.gitmessage	git: Introduce .gitmessage	2023-05-21 14:20:31 +03:00
.gitmodules	Branch commit for REL1_43	2024-10-22 12:47:33 -04:00
.gitreview
.mailmap	build: De-duplicate two recent CREDITS additions via mailmap	2024-09-11 10:02:02 -07:00
.phpcs.xml	build: Use inline ignore for MediaWiki.Usage.DeprecatedGlobalVariables	2024-09-26 18:15:32 +00:00
.stylelintrc.json	Login page: Use Codex CSS components	2023-07-06 17:20:17 -07:00
.svgo.config.js	build: Update SVGO to v3.0.2	2023-06-15 12:24:22 -07:00
.vsls.json	build: Upgrade eslint-config-wikimedia from 0.22.1 to 0.24.0	2023-02-07 10:17:30 -05:00
api.php	Namespace includes/context	2024-02-08 11:07:01 -05:00
autoload.php	Cache: Move MessageCache hook interfaces into correct folder	2025-07-02 00:34:15 +01:00
CODE_OF_CONDUCT.md
composer.json	composer.json: Replace away symfony php polyfills for PHP8/8.1	2025-07-01 12:51:43 +00:00
composer.local.json-sample	composer.local.json-sample: merge */composer.json	2022-02-07 16:24:23 +01:00
COPYING
CREDITS	build: De-duplicate two recent CREDITS additions via mailmap	2024-09-11 10:02:02 -07:00
DEVELOPERS.md	Codex: Allow a local development version to be used	2024-08-22 17:20:24 -07:00
docker-compose.yml	dev(docker): Bump mediawiki-web container to dev/bookworm-apache2:1.0.1	2025-01-07 17:02:36 +00:00
FAQ
Gruntfile.js	Merge "codex: Provide i18n function and messages"	2024-07-03 07:06:47 +00:00
HISTORY	HISTORY: Add point releases	2024-10-01 02:21:50 +01:00
img_auth.php	filerepo: extract AuthenticatedFileEntryPoint from img_auth.php	2024-05-16 13:22:00 +02:00
index.php	Namespace includes/context	2024-02-08 11:07:01 -05:00
INSTALL	INSTALL: Document requirement for bcmath/gmp on 32-bit systems	2025-04-18 15:57:48 +00:00
jsdoc.json	Update jsdoc-wmf-theme from 1.0.1 to 1.1.0	2024-06-27 19:29:24 +00:00
load.php	ResourceLoader: Follow-up creation of ResourceLoaderEntryPoint	2024-02-22 22:30:39 +00:00
opensearch_desc.php	Replace direct use of $wgRestPath with wfScript()	2024-07-01 22:01:32 +00:00
package-lock.json	build: Updating npm dependencies	2025-01-06 08:38:45 -05:00
package.json	Merge "Update Codex from v1.13.1 to v1.14.0"	2024-10-16 17:26:41 +00:00
phpunit.xml.dist	phpunit: Determine what extensions to load in unit tests via config	2023-09-25 23:03:48 +00:00
README.md	docs: Link to "Local development quickstart" in README	2024-01-22 13:58:11 +00:00
RELEASE-NOTES-1.43	Start 1.43.4	2025-07-01 14:51:55 +01:00
rest.php	Use namespaced classes (1)	2024-06-16 20:18:23 +02:00
SECURITY
thumb.php	Use namespaced classes (1)	2024-06-16 20:18:23 +02:00
thumb_handler.php	Use namespaced classes (1)	2024-06-16 20:18:23 +02:00
UPGRADE	UPGRADE: Update mailing list archive link	2024-04-14 21:36:52 +03:00

README.md

MediaWiki

MediaWiki is a free and open-source wiki software package written in PHP. It serves as the platform for Wikipedia and the other Wikimedia projects, used by hundreds of millions of people each month. MediaWiki is localised in over 350 languages and its reliability and robust feature set have earned it a large and vibrant community of third-party users and developers.

MediaWiki is:

feature-rich and extensible, both on-wiki and with hundreds of extensions;
scalable and suitable for both small and large sites;
simple to install, working on most hardware/software combinations; and
available in your language.

For system requirements, installation, and upgrade details, see the files RELEASE-NOTES, INSTALL, and UPGRADE.

Ready to get started?
- https://www.mediawiki.org/wiki/Special:MyLanguage/Download
Setting up your local development environment?
- https://www.mediawiki.org/wiki/Local_development_quickstart
Looking for the technical manual?
- https://www.mediawiki.org/wiki/Special:MyLanguage/Manual:Contents
Seeking help from a person?
- https://www.mediawiki.org/wiki/Special:MyLanguage/Communication
Looking to file a bug report or a feature request?
- https://bugs.mediawiki.org/
Interested in helping out?
- https://www.mediawiki.org/wiki/Special:MyLanguage/How_to_contribute

MediaWiki is the result of global collaboration and cooperation. The CREDITS file lists technical contributors to the project. The COPYING file explains MediaWiki's copyright and license (GNU General Public License, version 2 or later). Many thanks to the Wikimedia community for testing and suggestions.