The plugin currently has no way to block untrusted users from making a PR from a fork and having this PR built by Jenkins. The GitHub Pull Request Builder does have this feature which is very useful for open source projects to protect the build system from malicious changes. The documentation on the GitHub Pull Request Builder wiki page says to move from the GHPRB plugin to the GitHub Branch source plugin which causes the user to lose this extremely useful functionality.

          [JENKINS-53752] Block PRs from forks from untrusted users

          Sam Schwarz created issue -
          Mark Waite made changes -

          Mark Waite added a comment -

          Isn't the option to "Discover pull requests from forks" what you are seeking, with the setting "From Users with Admin or Write permission"?

          Mark Waite added a comment - Isn't the option to "Discover pull requests from forks" what you are seeking, with the setting "From Users with Admin or Write permission"?

          Jo Shields added a comment -

          No. That's the point. That setting determines whether pull requests should use Jenkinsfile from origin/ or from the fork - it has no functionality to block pull requests from users under any circumstance.

          Jo Shields added a comment - No. That's the point. That setting determines whether pull requests should use Jenkinsfile from origin/ or from the fork - it has no functionality to block pull requests from users under any circumstance.

          Andrew Bayer added a comment -

          Yeah, this is a missing feature - I'm trying to figure out if it's missing by design for some reason.

          Andrew Bayer added a comment - Yeah, this is a missing feature - I'm trying to figure out if it's missing by design for some reason.
          Andrew Bayer made changes -
          Link New: This issue relates to JENKINS-53753 [ JENKINS-53753 ]
          Andrew Bayer made changes -
          Assignee New: Andrew Bayer [ abayer ]
          Andrew Bayer made changes -
          Status Original: Open [ 1 ] New: In Progress [ 3 ]
          Andrew Bayer made changes -
          Status Original: In Progress [ 3 ] New: In Review [ 10005 ]

          Andrew Bayer added a comment -

          Preliminary PR up at https://github.com/jenkinsci/github-branch-source-plugin/pull/188 - we'll see what the reviewers think of it.

          Andrew Bayer added a comment - Preliminary PR up at https://github.com/jenkinsci/github-branch-source-plugin/pull/188 - we'll see what the reviewers think of it.
          Andrew Bayer made changes -
          Remote Link New: This issue links to "PR #188 (Web Link)" [ 21838 ]

            Unassigned Unassigned
            roguishmountain Sam Schwarz
            Votes:
            6 Vote for this issue
            Watchers:
            12 Start watching this issue

              Created:
              Updated: