Summary
Add support for suppressing AbuseFilters, allowing certain filters with sensitive information (e.g., PII) to be marked as suppressed. This restricts visibility of filter details, logs, and history to users with oversight rights.
Background
- Introduces a new "suppressed" flag for AbuseFilters to protect sensitive information.
- Unlike "protected" filters, suppression can occur without needing certain variables, offering a more flexible way to protect data.
- Suppression restricts access to filter details, logs, and history, making them visible only to oversighters.
- This enhancement includes updates to both the UI and API to support the management of suppressed filters.
- Logs for suppressed filters are auto-suppressed by default.
- Suppression operates independently from filter hiding; a suppressed filter can require both oversight and EFH/M rights if hidden.
User story
As an oversighter, (if I was one) I would want the ability to mark sensitive AbuseFilters as "suppressed" so that their details, logs, and history are only visible to users with oversight rights, helping ensure better privacy protection for sensitive data. For example, if an LTA is posting someone's address or phone number everywhere and I want to create a filter that hits on that address or phone number.
Technical notes
- Add a "suppressed" checkbox in the filter edit form, only accessible to users with oversight rights. The checkbox is grayed out for other users.
- Modify the system to restrict visibility of suppressed filter details, logs, and history to users with oversight rights.
- Add UI and API support for managing suppressed filters, ensuring oversight users can handle them.
- Create unit and integration tests to validate the behavior of suppressed filters and ensure proper functionality.
- Suppression works independently from filter hiding, so it can be used in conjunction with existing privacy features.
Acceptance criteria
- "Suppressed" flag available in the filter edit form, usable only by oversighters.
- Filter details, logs, and history of suppressed filters are visible only to users with oversight rights.
- Support for showing and managing suppressed filters added to the UI and API.
- Unit and integration tests for suppressed filters implemented.
- Approval from L3SC
- Approval from Trust & Safety Product
- Documentation on mediawiki.org updated to reflect new suppression functionality.
- QA (pending deployment)
Deployment
- January 6 - Group 0 wikis (incl. testwiki)
- January 7 - Group 1 wikis
- January 8 - Group 2 wikis (incl. enwiki)
Related links
- m:Community Wishlist Survey 2022/Larger suggestions/Create CheckUser-level and Oversight-level abuse filters
- m:Community Wishlist Survey 2023/Anti-harassment/Allow abuse filters to be hidden to only oversighters
- m:Community Wishlist/Wishes/Allow abuse filters to be hidden to only oversighters
- m:Community Wishlist/Focus areas/AbuseFilter
