Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-21413

configuration page exposes sonar password

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Major Major
    • sonar-plugin
    • None

      Sonar password is exposed on configuration page as user just has to look into DOM. SonarInstallation uses String for passwords, should use Secret.

          [JENKINS-21413] configuration page exposes sonar password

          Nicolas De Loof created issue -
          sbrandhof made changes -
          Resolution New: Duplicate [ 3 ]
          Status Original: Open [ 1 ] New: Closed [ 6 ]
          R. Tyler Croy made changes -
          Workflow Original: JNJira [ 153279 ] New: JNJira + In-Review [ 207339 ]

            sonarteam Sonar Team
            ndeloof Nicolas De Loof
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: