Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Alert journalist users about security issues #689

Open
eloquence opened this issue Apr 12, 2021 · 5 comments
Open

Alert journalist users about security issues #689

eloquence opened this issue Apr 12, 2021 · 5 comments
Labels
UX

Comments

@eloquence
Copy link
Member

Closely related to #22, we may also want to consider alerting journalist users about high severity security issues:

  • so they can alert admins directly (in addition to any emails sent by the system);
  • so they can potentially pause source communications until a security investigation has been completed.

This will require careful UX consideration to ensure we avoid alert fatigue, and to make alerts actionable.
@eloquence eloquence added the UX label Apr 12, 2021
@eloquence eloquence mentioned this issue Apr 12, 2021
Closed
@eloquence
Copy link
Member Author

See also freedomofpress/securedrop-client#1182 for a similar idea to implement system alerts in the client app. Given that security alerts could potentially be triggered anywhere in the system, keeping this issue open for now to track at the system-level.

@ninavizz
Copy link
Member

Shd we discuss in the near term @eloquence?

@zenmonkeykstop
Copy link
Contributor

A prerequisite for this is the ability to detect issues in the first place, see #951 for one approach.

@zenmonkeykstop zenmonkeykstop moved this to Cycle Backlog in SecureDrop dev cycle Apr 25, 2024
@zenmonkeykstop
Copy link
Contributor

@rocodes and/or @deeplow - flagging for your attention, I think you had some notes on this.

@deeplow
Copy link
Contributor

deeplow commented Aug 9, 2024

Not sure I recall my thoughts on this, unfortunately. But happy to contribute to this conversation.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
UX
Projects
SecureDrop dev cycle
Status: Cycle Backlog
Milestone
No milestone
Development

No branches or pull requests
4 participants
@eloquence @zenmonkeykstop @ninavizz @deeplow