Global Mask Password are visible as a plain text in Environment Variables tab

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Major
    • Component/s: envinject-plugin, mask-passwords-plugin
    • None
    • Environment:
      Jenkins version 1.591
      Mask Password plugin version - 2.7.2
      Environment Injector Plugin - 1.9

      Global Mask password are visible as a plain text in Environment Variables tab.
      You need to go job then click on specific build and on the left menu there is Environment Variables tab. Inside this table the mask passowrd can be read as a plain text.

      Password which are passed to job as a Password parameter are coded in this tab.

            Assignee:
            Gregory Boissinot
            Reporter:
            Andrzej Obstoj
            Votes:
            8 Vote for this issue
            Watchers:
            14 Start watching this issue

              Created:
              Updated:
              Resolved: