[JENKINS-57344] Whitelist requests for some java.io and other misc calls

Type: Bug
Resolution: Fixed
Priority: Minor
Component/s: script-security-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show
Released As:
script-security 1.61

The following is a sample of some of the methods that are safe to be whitelisted and are quite useful:

StringReader.read
StringWriter.append
new PrintWriter(Writer) (useful for capturing stacktraces as strings)
List.add
reverse() on List
new LinkedHashSet()

Hari Dara created issue - 2019-05-06 14:36

Hari Dara added a comment - 2019-05-06 14:46

PR: https://github.com/jenkinsci/script-security-plugin/pull/249

Hari Dara added a comment - 2019-05-06 14:46 PR: https://github.com/jenkinsci/script-security-plugin/pull/249

Devin Nusbaum added a comment - 2019-08-05 13:27

These methods were added to the whitelist in version 1.61 of Script Security Plugin.

Thanks haridsv, sorry I forgot to update the ticket!

Devin Nusbaum added a comment - 2019-08-05 13:27 These methods were added to the whitelist in version 1.61 of Script Security Plugin. Thanks haridsv , sorry I forgot to update the ticket!

Devin Nusbaum made changes - 2019-08-05 13:27

Released As		New: script-security 1.61
Resolution		New: Fixed [ 1 ]
Status	Original: Open [ 1 ]	New: Resolved [ 5 ]

Assignee:: Hari Dara

Reporter:: Hari Dara

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2019-05-06 14:36

Updated:: 2019-08-05 13:27

Resolved:: 2019-08-05 13:27

Jenkins

Details

Description

Attachments

Activity

Collapse comment: Hari Dara added a comment - 2019-05-06 14:46

Expand comment: Hari Dara added a comment - 2019-05-06 14:46

Collapse comment: Devin Nusbaum added a comment - 2019-08-05 13:27

Expand comment: Devin Nusbaum added a comment - 2019-08-05 13:27

People

Dates