Input descriptions can contain html tags - allow or prevent

This issue is archived. You can view it, but you can't modify it. Learn more

XMLWordPrintable

    • pannonian, iapetus

      you will find markup in the description of the last parameter

       <br/><strong>NOTE:</strong> Uses the above BLUEOCEAN_BRANCH_NAME to determine the upstream build Job name fr

      Maybe we want to allow to use markdown instead and parse the description before display. That would give a lot of power to the user.

      The problem with allowing html directly is XSS (Cross-site Scripting)

        1. Screen Shot 2018-04-13 at 15.53.02.png
          14 kB
          Deiwin Sarjas
        2. Screen Shot 2018-04-13 at 15.53.12.png
          18 kB
          Deiwin Sarjas
        3. Screenshot from 2017-01-18 10-02-05.png
          58 kB
          Thorsten Scherler

            Assignee:
            Tom FENNELLY
            Reporter:
            Thorsten Scherler
            Archiver:
            Jenkins Service Account

              Created:
              Updated:
              Resolved:
              Archived: