[JENKINS-12904] WAS Builder exposes username and password when using "system information" for the Master or Slave

Type: Bug
Resolution: Unresolved
Priority: Critical
Component/s: was-builder-plugin
Labels:
- security

Similar Issues:
Powered by SuggestiMate

Show

I'm not sure if this is a problem with the plugin on Jenkins it self. The thread name of the was-builder task embeds the full command line which includes the username / password that was invoked. I see this as a security exposure when using the Jenkins ui.

Walter Kacynski created issue - 2012-02-27 15:49

R. Tyler Croy made changes - 2016-07-25 23:49

Workflow

Original: JNJira [ 143364 ]

New: JNJira + In-Review [ 175885 ]

Assignee:: Daniel Petisme

Reporter:: Walter Kacynski

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2012-02-27 15:49

Updated:: 2012-06-18 16:26

Jenkins

Details

Description

Attachments

Activity

People

Dates