Page MenuHomeMiraheze
Create Task
Maniphest T6832

npm should not run as root on MediaWiki servers
Closed, ResolvedPublic
Actions

Description

Creates risks we don't need to take. https://medium.com/@ExplosionPills/dont-use-sudo-with-npm-still-66e609f5f92

See https://github.com/miraheze/puppet/search?q=npm+root, e.g.:
https://github.com/miraheze/puppet/blob/2815534395f49982fc818843e840dca4f38de000/modules/mediawiki/manifests/servicessetup.pp#L21
https://github.com/miraheze/puppet/blob/fe5877c5810b1137aecddae99e3241f45447bc8f/modules/services/manifests/citoid.pp#L58
https://github.com/miraheze/puppet/blob/4e68cce031a164027d28b44029ecba9958c04ab2/modules/services/manifests/proton.pp#L51

and much more.

Event Timeline

Southparkfan created this task.Mon, Feb 8, 20:38
Herald added subscribers: Universal_Omega, RhinosF1, Reception123. · View Herald TranscriptMon, Feb 8, 20:38
Southparkfan added a subscriber: John.Mon, Feb 8, 20:39

cc @John as Engineering Manager

Paladox closed this task as Resolved.Tue, Feb 9, 19:51
Paladox claimed this task.
Paladox added a subscriber: Paladox.

Has all been migrated away from using root. Thus this task is resolved now.

Paladox changed the visibility from "Custom Policy" to "Public (No Login Required)".Tue, Feb 9, 20:21
Paladox changed the edit policy from "Custom Policy" to "All Users".
Dmehus awarded a token.Tue, Feb 9, 23:32