Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-19830

Masked Password visible as plain text in Msbuild Plugin

    XMLWordPrintable

Details

    Description

            • VERY CRITICAL *****

      Masked Password Clearly visible.

      When Pass build variables as properties is marked as true. Global password will be clearly visible in console output. It was found in version 1.20, it was not in version 1.16.

      Please Fix this issue as soon as possible, as it is a security threat for us.

      For reference attaching image. in which global declared password visible clearly with msbuild command.

      but not visible when i echo in windows batch command.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-19706 Masked Password Clearly visible as plain text in console output.

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-20002 Build Environment plugin will display paramaterized build paramter of type "password" values

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              kdsweeney kdsweeney
              arpitgold Arpit Nagar
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: