These security guidelines help lead developers, architects, and product
managers make decisions that protect MediaWiki's users when developing new
features or refactoring old code.
All MediaWiki developers can follow these principles and process when
developing new core features or extensions. If a developer or team is
planning to have their code deployed on the Wikimedia cluster, following
these guidelines will ensure the security review process is quick and
requires minimal changes before deployment.