Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-47393

Split CommandLauncher into a plugin and integrate with script-security

      As of Jenkins Security Advisory 2017-10-11 CommandLauncher configuration enforces RUN_SCRIPTS, which is awkward for cases where a lower-privileged user is permitted to configure other aspects of an agent. The launcher should be moved out of core into a plugin that can depend on script-security for a regular approval workflow.

          [JENKINS-47393] Split CommandLauncher into a plugin and integrate with script-security

          Jesse Glick created issue -
          Jesse Glick made changes -
          Link New: This issue relates to SECURITY-478 [ SECURITY-478 ]
          Jesse Glick made changes -
          Labels Original: security ux New: security split-plugins-from-core ux
          Jesse Glick made changes -
          Status Original: Open [ 1 ] New: In Progress [ 3 ]
          Jesse Glick made changes -
          Remote Link New: This issue links to "core PR 3076 (Web Link)" [ 17851 ]
          Jesse Glick made changes -
          Remote Link New: This issue links to "jenkins-test-harness PR 79 (Web Link)" [ 17852 ]
          Jesse Glick made changes -
          Status Original: In Progress [ 3 ] New: In Review [ 10005 ]
          Jesse Glick made changes -
          Link New: This issue depends on HOSTING-442 [ HOSTING-442 ]
          Jesse Glick made changes -
          Resolution New: Fixed [ 1 ]
          Status Original: In Review [ 10005 ] New: Resolved [ 5 ]
          Jesse Glick made changes -
          Link New: This issue depends on JENKINS-47593 [ JENKINS-47593 ]
          James Dumay made changes -
          Remote Link New: This issue links to "CloudBees Internal OSS-2247 (Web Link)" [ 18374 ]

            jglick Jesse Glick
            jglick Jesse Glick
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: