• Type: Bug
• Resolution: Unresolved
• Priority: Blocker
• Component/s: mixing-security-realm-plugin, permissive-script-security-plugin
• Labels:

  • jenkins
  • script-security
  • security
• Environment:

  Hide

  Jenkins 2.176.3
  
  Plugins:
  
  Test stability history (test-stability): 2.3
  Pipeline: Declarative (pipeline-model-definition): 1.3.9
  JIRA plugin (jira): 3.0.9
  Copy Artifact Plugin (copyartifact): 1.42.1
  ruby-runtime (ruby-runtime): 0.12
  Pipeline: Model API (pipeline-model-api): 1.3.9
  Variant Plugin (variant): 1.3
  multi-module-tests-publisher (multi-module-tests-publisher): 1.44
  Bitbucket Branch Source Plugin (cloudbees-bitbucket-branch-source): 2.4.6
  JavaScript GUI Lib: ACE Editor bundle plugin (ace-editor): 1.1
  REST Implementation for Blue Ocean (blueocean-rest-impl): 1.19.0
  Self-Organizing Swarm Plug-in Modules (swarm): 3.17
  JavaScript GUI Lib: jQuery bundles (jQuery and jQuery UI) plugin (jquery-detached): 1.2.1
  Build Pipeline Plugin (build-pipeline-plugin): 1.5.8
  Pipeline: Supporting APIs (workflow-support): 3.3
  Environment Injector Plugin (envinject): 2.2.1
  WMI Windows Agents Plugin (windows-slaves): 1.4
  jQuery plugin (jquery): 1.12.4-1
  Cppcheck Plug-in (cppcheck): 1.25
  Credentials Plugin (credentials): 2.3.0
  GitHub plugin (github): 1.29.4
  Pipeline: Multibranch (workflow-multibranch): 2.21
  SCM API Plugin (scm-api): 2.6.3
  Parameterized Trigger plugin (parameterized-trigger): 2.35.2
  Display URL for Blue Ocean (blueocean-display-url): 2.3.0
  Pipeline: Multibranch with defaults (pipeline-multibranch-defaults): 2.0
  Extended Choice Parameter Plug-In (extended-choice-parameter): 0.78
  Robot Framework plugin (robot): 2.0.0
  Git Pipeline for Blue Ocean (blueocean-git-pipeline): 1.19.0
  Pipeline (workflow-aggregator): 2.6
  TestRail Plugin (testrail): 1.0.7-SNAPSHOT (private-c1a177aa-daneve01)
  Token Macro Plugin (token-macro): 2.8
  Pipeline: Basic Steps (workflow-basic-steps): 2.18
  Apache HttpComponents Client 4.x API Plugin (apache-httpcomponents-client-4-api): 4.5.5-3.0
  JUnit Realtime Test Reporter Plugin (junit-realtime-test-reporter): 0.6
  Dashboard View (dashboard-view): 2.11
  Mailer Plugin (mailer): 1.26
  Blue Ocean (blueocean): 1.19.0
  Trilead API Plugin (trilead-api): 1.0.3
  Azure Commons Plugin (azure-commons): 1.0.4
  File System SCM Plugin (filesystem_scm): 2.1
  Pipeline: API (workflow-api): 2.37
  built-on-column (built-on-column): 1.1
  Branch API Plugin (branch-api): 2.5.4
  Priority Sorter Plugin (PrioritySorter): 3.6.0
  Run Condition Plugin (run-condition): 1.2
  Build Environment Plugin (build-environment): 1.6
  xUnit plugin (xunit): 2.3.5
  Bitbucket Pipeline for Blue Ocean (blueocean-bitbucket-pipeline): 1.19.0
  Exclusive Execution Plugin (exclusive-execution): 0.8
  Pipeline: Nodes and Processes (workflow-durable-task-step): 2.33
  Docker Commons Plugin (docker-commons): 1.15
  Doxygen Plug-in (doxygen): 0.18
  JSUnit plugin (jsunit): 1.6
  SSH Credentials Plugin (ssh-credentials): 1.17.1
  JavaScript GUI Lib: Handlebars bundle plugin (handlebars): 1.1.1
  Pipeline: Declarative Agent API (pipeline-model-declarative-agent): 1.1.1
  GitHub Branch Source Plugin (github-branch-source): 2.5.6
  Pipeline: Stage View Plugin (pipeline-stage-view): 2.12
  JIRA Trigger Plugin (jira-trigger): 1.0.0
  LDAP Plugin (ldap): 1.20
  Windows Azure Storage plugin (windows-azure-storage): 1.1.0
  Pipeline: Stage Tags Metadata (pipeline-stage-tags-metadata): 1.3.9
  Pipeline Graph Analysis Plugin (pipeline-graph-analysis): 1.10
  GitHub API Plugin (github-api): 1.95
  JUnit Attachments Plugin (junit-attachments): 1.6
  Role-based Authorization Strategy (role-strategy): 2.13
  REST API for Blue Ocean (blueocean-rest): 1.19.0
  Log Parser Plugin (log-parser): 2.1
  PAM Authentication plugin (pam-auth): 1.5.1
  Pyenv Pipeline Plugin (pyenv-pipeline): 2.1.2
  Rebuilder (rebuild): 1.31
  Gitlab API Plugin (gitlab-api): 1.0.5
  Pipeline: Shared Groovy Libraries (workflow-cps-global-lib): 2.15
  bouncycastle API Plugin (bouncycastle-api): 2.17
  GIT server Plugin (git-server): 1.8
  Config File Provider Plugin (config-file-provider): 3.6.2
  Pipeline: Stage Step (pipeline-stage-step): 2.3
  JIRA Integration for Blue Ocean (blueocean-jira): 1.19.0
  Ant Plugin (ant): 1.10
  Display URL API (display-url-api): 2.3.2
  TestComplete xUnit Plugin (testcomplete-xunit): 1.1
  Pipeline: GitHub Groovy Libraries (pipeline-github-lib): 1.0
  Permissive Script Security Plugin (permissive-script-security): 0.5
  Plain Credentials Plugin (plain-credentials): 1.5
  JWT for Blue Ocean (blueocean-jwt): 1.19.0
  Common API for Blue Ocean (blueocean-commons): 1.19.0
  jQuery UI plugin (jquery-ui): 1.0.2
  Configuration Slicing plugin (configurationslicing): 1.47
  Workspace Cleanup Plugin (ws-cleanup): 0.37
  Node and Label parameter plugin (nodelabelparameter): 1.7.2
  Pipeline implementation for Blue Ocean (blueocean-pipeline-api-impl): 1.19.0
  SSH Slaves plugin (ssh-slaves): 1.30.1
  Web for Blue Ocean (blueocean-web): 1.19.0
  Show Build Parameters plugin (show-build-parameters): 1.0
  elastic-axis (elastic-axis): 1.2
  External Monitor Job Type Plugin (external-monitor-job): 1.7
  Design Language (jenkins-design-language): 1.19.0
  Blue Ocean Core JS (blueocean-core-js): 1.19.0
  Groovy (groovy): 2.2
  Gradle Plugin (gradle): 1.33
  pyenv plugin (pyenv): 0.0.7
  Active Directory plugin (active-directory): 2.16
  Job DSL (job-dsl): 1.76
  Structs Plugin (structs): 1.20
  Javadoc Plugin (javadoc): 1.5
  Slack Notification Plugin (slack): 2.32
  Prometheus metrics plugin (prometheus): 2.0.6
  user build vars plugin (build-user-vars-plugin): 1.5
  Dashboard for Blue Ocean (blueocean-dashboard): 1.19.0
  JAXB plugin (jaxb): 2.3.0.1
  description setter plugin (description-setter): 1.10
  Strict Crumb Issuer Plugin (strict-crumb-issuer): 2.0.1
  Favorite (favorite): 2.3.2
  Script Security Plugin (script-security): 1.62
  Blue Ocean Pipeline Editor (blueocean-pipeline-editor): 1.19.0
  JSch dependency plugin (jsch): 0.1.55.1
  Autofavorite for Blue Ocean (blueocean-autofavorite): 1.2.4
  Jackson 2 API Plugin (jackson2-api): 2.9.9.1
  Dependency Graph Viewer Plugin (depgraph-view): 0.13
  Docker Pipeline (docker-workflow): 1.19
  Hudson Post build task (postbuild-task): 1.8
  Artifactory Plugin (artifactory): 3.3.2
  Mercurial plugin (mercurial): 2.8
  Subversion Plug-in (subversion): 2.12.2
  Resource Disposer Plugin (resource-disposer): 0.13
  Matrix Project Plugin (matrix-project): 1.14
  Matrix Authorization Strategy Plugin (matrix-auth): 2.4.2
  Pipeline: SCM Step (workflow-scm-step): 2.9
  Handy Uri Templates 2.x API Plugin (handy-uri-templates-2-api): 2.1.7-1.0
  Durable Task Plugin (durable-task): 1.30
  Ivy Plugin (ivy): 2.1
  Oracle Java SE Development Kit Installer Plugin (jdk-tool): 1.3
  Email Extension Plugin (email-ext): 2.66
  Config API for Blue Ocean (blueocean-config): 1.19.0
  Performance Publisher plugin (perfpublisher): 8.09
  Icon Shim Plugin (icon-shim): 2.0.3
  Sectioned View Plugin (sectioned-view): 1.25
  Pipeline: Step API (workflow-step-api): 2.20
  Metrics Plugin (metrics): 4.0.2.5
  Maven Integration plugin (maven-plugin): 3.4
  Monitoring (monitoring): 1.79.0
  Hudson global-build-stats plugin (global-build-stats): 1.5
  Pipeline: REST API Plugin (pipeline-rest-api): 2.12
  MapDB API Plugin (mapdb-api): 1.0.9.0
  Pipeline: Declarative Extension Points API (pipeline-model-extensions): 1.3.9
  Pipeline: Milestone Step (pipeline-milestone-step): 1.3.1
  Build Name and Description Setter (build-name-setter): 2.0.2
  Folders Plugin (cloudbees-folder): 6.9
  Job Restrictions Plugin (job-restrictions): 0.8
  Authentication Tokens API Plugin (authentication-tokens): 1.3
  Build Monitor View (build-monitor-plugin): 1.12+build.201809061734
  JavaScript GUI Lib: Moment.js bundle plugin (momentjs): 1.1.1
  Conditional BuildStep (conditional-buildstep): 1.3.6
  GitHub Integration Plugin (github-pullrequest): 0.2.6
  Gerrit Trigger (gerrit-trigger): 2.30.0
  Blue Ocean Executor Info (blueocean-executor-info): 1.19.0
  Build With Parameters (build-with-parameters): 1.4
  Plot plugin (plot): 2.1.1
  Read-only configurations (read-only-configurations): 1.10
  CVS Plug-in (cvs): 2.14
  Pipeline: Input Step (pipeline-input-step): 2.11
  Test Results Analyzer Plugin (test-results-analyzer): 0.3.5
  build log file size checker plugin (logfilesizechecker): 1.5
  EnvInject API Plugin (envinject-api): 1.6
  Server Sent Events (SSE) Gateway Plugin (sse-gateway): 1.20
  Pipeline SCM API for Blue Ocean (blueocean-pipeline-scm-api): 1.19.0
  Static Analysis Utilities (analysis-core): 1.96
  Pipeline: Build Step (pipeline-build-step): 2.9
  i18n for Blue Ocean (blueocean-i18n): 1.19.0
  JUnit Plugin (junit): 1.28
  GitHub Pipeline for Blue Ocean (blueocean-github-pipeline): 1.19.0
  Lockable Resources plugin (lockable-resources): 2.5
  Pipeline: Job (workflow-job): 2.34
  Compress Artifacts Plugin (compress-artifacts): 1.10
  Join plugin (join): 1.21
  Next Build Number Plugin (next-build-number): 1.6
  Pub-Sub "light" Bus (pubsub-light): 1.13
  DTKit 2 API. (dtkit-api): 2.1.1-1
  Pipeline Utility Steps (pipeline-utility-steps): 2.3.0
  Credentials Binding Plugin (credentials-binding): 1.20
  Pipeline: Groovy (workflow-cps): 2.74
  Personalization for Blue Ocean (blueocean-personalization): 1.19.0
  OWASP Markup Formatter Plugin (antisamy-markup-formatter): 1.6
  Xvfb plugin (xvfb): 1.1.3
  Multijob plugin (jenkins-multijob-plugin): 1.32
  Git plugin (git): 3.12.0
  HTML Publisher plugin (htmlpublisher): 1.18
  JIRA Pipeline Steps (jira-steps): 1.5.0
  Events API for Blue Ocean (blueocean-events): 1.19.0
  Command Agent Launcher Plugin (command-launcher): 1.3
  Git client plugin (git-client): 2.8.2
  Validating String Parameter Plugin (validating-string-parameter): 2.4
  Timestamper (timestamper): 1.10

  Show

  Jenkins 2.176.3 Plugins: Test stability history (test-stability): 2.3 Pipeline: Declarative (pipeline-model-definition): 1.3.9 JIRA plugin (jira): 3.0.9 Copy Artifact Plugin (copyartifact): 1.42.1 ruby-runtime (ruby-runtime): 0.12 Pipeline: Model API (pipeline-model-api): 1.3.9 Variant Plugin (variant): 1.3 multi-module-tests-publisher (multi-module-tests-publisher): 1.44 Bitbucket Branch Source Plugin (cloudbees-bitbucket-branch-source): 2.4.6 JavaScript GUI Lib: ACE Editor bundle plugin (ace-editor): 1.1 REST Implementation for Blue Ocean (blueocean-rest-impl): 1.19.0 Self-Organizing Swarm Plug-in Modules (swarm): 3.17 JavaScript GUI Lib: jQuery bundles (jQuery and jQuery UI) plugin (jquery-detached): 1.2.1 Build Pipeline Plugin (build-pipeline-plugin): 1.5.8 Pipeline: Supporting APIs (workflow-support): 3.3 Environment Injector Plugin (envinject): 2.2.1 WMI Windows Agents Plugin (windows-slaves): 1.4 jQuery plugin (jquery): 1.12.4-1 Cppcheck Plug-in (cppcheck): 1.25 Credentials Plugin (credentials): 2.3.0 GitHub plugin (github): 1.29.4 Pipeline: Multibranch (workflow-multibranch): 2.21 SCM API Plugin (scm-api): 2.6.3 Parameterized Trigger plugin (parameterized-trigger): 2.35.2 Display URL for Blue Ocean (blueocean-display-url): 2.3.0 Pipeline: Multibranch with defaults (pipeline-multibranch-defaults): 2.0 Extended Choice Parameter Plug-In (extended-choice-parameter): 0.78 Robot Framework plugin (robot): 2.0.0 Git Pipeline for Blue Ocean (blueocean-git-pipeline): 1.19.0 Pipeline (workflow-aggregator): 2.6 TestRail Plugin (testrail): 1.0.7-SNAPSHOT (private-c1a177aa-daneve01) Token Macro Plugin (token-macro): 2.8 Pipeline: Basic Steps (workflow-basic-steps): 2.18 Apache HttpComponents Client 4.x API Plugin (apache-httpcomponents-client-4-api): 4.5.5-3.0 JUnit Realtime Test Reporter Plugin (junit-realtime-test-reporter): 0.6 Dashboard View (dashboard-view): 2.11 Mailer Plugin (mailer): 1.26 Blue Ocean (blueocean): 1.19.0 Trilead API Plugin (trilead-api): 1.0.3 Azure Commons Plugin (azure-commons): 1.0.4 File System SCM Plugin (filesystem_scm): 2.1 Pipeline: API (workflow-api): 2.37 built-on-column (built-on-column): 1.1 Branch API Plugin (branch-api): 2.5.4 Priority Sorter Plugin (PrioritySorter): 3.6.0 Run Condition Plugin (run-condition): 1.2 Build Environment Plugin (build-environment): 1.6 xUnit plugin (xunit): 2.3.5 Bitbucket Pipeline for Blue Ocean (blueocean-bitbucket-pipeline): 1.19.0 Exclusive Execution Plugin (exclusive-execution): 0.8 Pipeline: Nodes and Processes (workflow-durable-task-step): 2.33 Docker Commons Plugin (docker-commons): 1.15 Doxygen Plug-in (doxygen): 0.18 JSUnit plugin (jsunit): 1.6 SSH Credentials Plugin (ssh-credentials): 1.17.1 JavaScript GUI Lib: Handlebars bundle plugin (handlebars): 1.1.1 Pipeline: Declarative Agent API (pipeline-model-declarative-agent): 1.1.1 GitHub Branch Source Plugin (github-branch-source): 2.5.6 Pipeline: Stage View Plugin (pipeline-stage-view): 2.12 JIRA Trigger Plugin (jira-trigger): 1.0.0 LDAP Plugin (ldap): 1.20 Windows Azure Storage plugin (windows-azure-storage): 1.1.0 Pipeline: Stage Tags Metadata (pipeline-stage-tags-metadata): 1.3.9 Pipeline Graph Analysis Plugin (pipeline-graph-analysis): 1.10 GitHub API Plugin (github-api): 1.95 JUnit Attachments Plugin (junit-attachments): 1.6 Role-based Authorization Strategy (role-strategy): 2.13 REST API for Blue Ocean (blueocean-rest): 1.19.0 Log Parser Plugin (log-parser): 2.1 PAM Authentication plugin (pam-auth): 1.5.1 Pyenv Pipeline Plugin (pyenv-pipeline): 2.1.2 Rebuilder (rebuild): 1.31 Gitlab API Plugin (gitlab-api): 1.0.5 Pipeline: Shared Groovy Libraries (workflow-cps-global-lib): 2.15 bouncycastle API Plugin (bouncycastle-api): 2.17 GIT server Plugin (git-server): 1.8 Config File Provider Plugin (config-file-provider): 3.6.2 Pipeline: Stage Step (pipeline-stage-step): 2.3 JIRA Integration for Blue Ocean (blueocean-jira): 1.19.0 Ant Plugin (ant): 1.10 Display URL API (display-url-api): 2.3.2 TestComplete xUnit Plugin (testcomplete-xunit): 1.1 Pipeline: GitHub Groovy Libraries (pipeline-github-lib): 1.0 Permissive Script Security Plugin (permissive-script-security): 0.5 Plain Credentials Plugin (plain-credentials): 1.5 JWT for Blue Ocean (blueocean-jwt): 1.19.0 Common API for Blue Ocean (blueocean-commons): 1.19.0 jQuery UI plugin (jquery-ui): 1.0.2 Configuration Slicing plugin (configurationslicing): 1.47 Workspace Cleanup Plugin (ws-cleanup): 0.37 Node and Label parameter plugin (nodelabelparameter): 1.7.2 Pipeline implementation for Blue Ocean (blueocean-pipeline-api-impl): 1.19.0 SSH Slaves plugin (ssh-slaves): 1.30.1 Web for Blue Ocean (blueocean-web): 1.19.0 Show Build Parameters plugin (show-build-parameters): 1.0 elastic-axis (elastic-axis): 1.2 External Monitor Job Type Plugin (external-monitor-job): 1.7 Design Language (jenkins-design-language): 1.19.0 Blue Ocean Core JS (blueocean-core-js): 1.19.0 Groovy (groovy): 2.2 Gradle Plugin (gradle): 1.33 pyenv plugin (pyenv): 0.0.7 Active Directory plugin (active-directory): 2.16 Job DSL (job-dsl): 1.76 Structs Plugin (structs): 1.20 Javadoc Plugin (javadoc): 1.5 Slack Notification Plugin (slack): 2.32 Prometheus metrics plugin (prometheus): 2.0.6 user build vars plugin (build-user-vars-plugin): 1.5 Dashboard for Blue Ocean (blueocean-dashboard): 1.19.0 JAXB plugin (jaxb): 2.3.0.1 description setter plugin (description-setter): 1.10 Strict Crumb Issuer Plugin (strict-crumb-issuer): 2.0.1 Favorite (favorite): 2.3.2 Script Security Plugin (script-security): 1.62 Blue Ocean Pipeline Editor (blueocean-pipeline-editor): 1.19.0 JSch dependency plugin (jsch): 0.1.55.1 Autofavorite for Blue Ocean (blueocean-autofavorite): 1.2.4 Jackson 2 API Plugin (jackson2-api): 2.9.9.1 Dependency Graph Viewer Plugin (depgraph-view): 0.13 Docker Pipeline (docker-workflow): 1.19 Hudson Post build task (postbuild-task): 1.8 Artifactory Plugin (artifactory): 3.3.2 Mercurial plugin (mercurial): 2.8 Subversion Plug-in (subversion): 2.12.2 Resource Disposer Plugin (resource-disposer): 0.13 Matrix Project Plugin (matrix-project): 1.14 Matrix Authorization Strategy Plugin (matrix-auth): 2.4.2 Pipeline: SCM Step (workflow-scm-step): 2.9 Handy Uri Templates 2.x API Plugin (handy-uri-templates-2-api): 2.1.7-1.0 Durable Task Plugin (durable-task): 1.30 Ivy Plugin (ivy): 2.1 Oracle Java SE Development Kit Installer Plugin (jdk-tool): 1.3 Email Extension Plugin (email-ext): 2.66 Config API for Blue Ocean (blueocean-config): 1.19.0 Performance Publisher plugin (perfpublisher): 8.09 Icon Shim Plugin (icon-shim): 2.0.3 Sectioned View Plugin (sectioned-view): 1.25 Pipeline: Step API (workflow-step-api): 2.20 Metrics Plugin (metrics): 4.0.2.5 Maven Integration plugin (maven-plugin): 3.4 Monitoring (monitoring): 1.79.0 Hudson global-build-stats plugin (global-build-stats): 1.5 Pipeline: REST API Plugin (pipeline-rest-api): 2.12 MapDB API Plugin (mapdb-api): 1.0.9.0 Pipeline: Declarative Extension Points API (pipeline-model-extensions): 1.3.9 Pipeline: Milestone Step (pipeline-milestone-step): 1.3.1 Build Name and Description Setter (build-name-setter): 2.0.2 Folders Plugin (cloudbees-folder): 6.9 Job Restrictions Plugin (job-restrictions): 0.8 Authentication Tokens API Plugin (authentication-tokens): 1.3 Build Monitor View (build-monitor-plugin): 1.12+build.201809061734 JavaScript GUI Lib: Moment.js bundle plugin (momentjs): 1.1.1 Conditional BuildStep (conditional-buildstep): 1.3.6 GitHub Integration Plugin (github-pullrequest): 0.2.6 Gerrit Trigger (gerrit-trigger): 2.30.0 Blue Ocean Executor Info (blueocean-executor-info): 1.19.0 Build With Parameters (build-with-parameters): 1.4 Plot plugin (plot): 2.1.1 Read-only configurations (read-only-configurations): 1.10 CVS Plug-in (cvs): 2.14 Pipeline: Input Step (pipeline-input-step): 2.11 Test Results Analyzer Plugin (test-results-analyzer): 0.3.5 build log file size checker plugin (logfilesizechecker): 1.5 EnvInject API Plugin (envinject-api): 1.6 Server Sent Events (SSE) Gateway Plugin (sse-gateway): 1.20 Pipeline SCM API for Blue Ocean (blueocean-pipeline-scm-api): 1.19.0 Static Analysis Utilities (analysis-core): 1.96 Pipeline: Build Step (pipeline-build-step): 2.9 i18n for Blue Ocean (blueocean-i18n): 1.19.0 JUnit Plugin (junit): 1.28 GitHub Pipeline for Blue Ocean (blueocean-github-pipeline): 1.19.0 Lockable Resources plugin (lockable-resources): 2.5 Pipeline: Job (workflow-job): 2.34 Compress Artifacts Plugin (compress-artifacts): 1.10 Join plugin (join): 1.21 Next Build Number Plugin (next-build-number): 1.6 Pub-Sub "light" Bus (pubsub-light): 1.13 DTKit 2 API. (dtkit-api): 2.1.1-1 Pipeline Utility Steps (pipeline-utility-steps): 2.3.0 Credentials Binding Plugin (credentials-binding): 1.20 Pipeline: Groovy (workflow-cps): 2.74 Personalization for Blue Ocean (blueocean-personalization): 1.19.0 OWASP Markup Formatter Plugin (antisamy-markup-formatter): 1.6 Xvfb plugin (xvfb): 1.1.3 Multijob plugin (jenkins-multijob-plugin): 1.32 Git plugin (git): 3.12.0 HTML Publisher plugin (htmlpublisher): 1.18 JIRA Pipeline Steps (jira-steps): 1.5.0 Events API for Blue Ocean (blueocean-events): 1.19.0 Command Agent Launcher Plugin (command-launcher): 1.3 Git client plugin (git-client): 2.8.2 Validating String Parameter Plugin (validating-string-parameter): 2.4 Timestamper (timestamper): 1.10

[JENKINS-59227] Global Pipeline Libraries configuration lost

Collapse comment: Peter Wiseman added a comment - 2019-12-10 04:46

Peter Wiseman added a comment - 2019-12-10 04:46

I've experienced the same problem.  Lost configuration after upgrade from 2.132 to 2.207. 

• Pipeline Shared Groovy Library v2.15
• Subversion Plugin v2.12.2

Expand comment: Peter Wiseman added a comment - 2019-12-10 04:46

Peter Wiseman added a comment - 2019-12-10 04:46 I've experienced the same problem.  Lost configuration after upgrade from 2.132 to 2.207.  Pipeline Shared Groovy Library v2.15 Subversion Plugin v2.12.2

Collapse comment: Peter Wiseman added a comment - 2019-12-10 06:27

Peter Wiseman added a comment - 2019-12-10 06:27

With Permissive Script Security at 0.5, the Global Pipeline Library SCM configuration information is no longer visible.  If that were all it might be ok, but upon saving, the configuration, is removed.

Expand comment: Peter Wiseman added a comment - 2019-12-10 06:27

Peter Wiseman added a comment - 2019-12-10 06:27 With Permissive Script Security at 0.5, the Global Pipeline Library SCM configuration information is no longer visible.  If that were all it might be ok, but upon saving, the configuration, is removed.

Collapse comment: Peter Wiseman added a comment - 2019-12-10 07:10

Peter Wiseman added a comment - 2019-12-10 07:10

I tried Permissive Script Security 0.4. It does not have the issue.

Expand comment: Peter Wiseman added a comment - 2019-12-10 07:10

Peter Wiseman added a comment - 2019-12-10 07:10 I tried Permissive Script Security 0.4. It does not have the issue.

Collapse comment: Oleg Nenashev added a comment - 2019-12-10 13:46

Oleg Nenashev added a comment - 2019-12-10 13:46

CC bitwiseman dnusbaum who are the Pipeline maintainers ATM

Expand comment: Oleg Nenashev added a comment - 2019-12-10 13:46

Oleg Nenashev added a comment - 2019-12-10 13:46 CC bitwiseman dnusbaum who are the Pipeline maintainers ATM

Collapse comment: Devin Nusbaum added a comment - 2019-12-10 15:00

Devin Nusbaum added a comment - 2019-12-10 15:00

Based on the comments here, in JENKINS-57171, and JENKINS-59145 (which looks like the same issue but when configuring a Pipeline job from SCM instead of a shared library SCM), the issue seems to be specific to Permissive Script Security 0.5 (I think this is the only change in that release), so I am changing the component. There may be some issue in the interaction between Permission Script Security and Script Security, but I'm not sure. If anyone has any relevant error messages or stack traces in your Jenkins logs, or any error messages in your browser console, that would be helpful.

Expand comment: Devin Nusbaum added a comment - 2019-12-10 15:00

Devin Nusbaum added a comment - 2019-12-10 15:00 Based on the comments here, in JENKINS-57171 , and JENKINS-59145 (which looks like the same issue but when configuring a Pipeline job from SCM instead of a shared library SCM), the issue seems to be specific to Permissive Script Security 0.5 ( I think this is the only change in that release ), so I am changing the component. There may be some issue in the interaction between Permission Script Security and Script Security, but I'm not sure. If anyone has any relevant error messages or stack traces in your Jenkins logs, or any error messages in your browser console, that would be helpful.

Collapse comment: Oliver Gondža added a comment - 2019-12-16 14:37

Oliver Gondža added a comment - 2019-12-16 14:37

permissive-script-security maintainer here, I failed to reproduce this with version 0.5 installed and enabled so I suspect there must be something else involved. Please share the config.xml of the affected job and org.jenkinsci.plugins.workflow.libs.GlobalLibraries.xml, where there is reported the stored config (of one or the other) is not rendered in UI.

Expand comment: Oliver Gondža added a comment - 2019-12-16 14:37

Oliver Gondža added a comment - 2019-12-16 14:37 permissive-script-security maintainer here, I failed to reproduce this with version 0.5 installed and enabled so I suspect there must be something else involved. Please share the config.xml of the affected job and org.jenkinsci.plugins.workflow.libs.GlobalLibraries.xml , where there is reported the stored config (of one or the other) is not rendered in UI.

Collapse comment: Tim Patterson added a comment - 2022-09-07 07:44

Tim Patterson added a comment - 2022-09-07 07:44

We're still getting this issue and have been for ages. We're running Jenkins 2.346.1.

Steps:

1. Browse to "Manage Jenkins -> Configure System" page
2. Browse to the Global Pipeline Libraries -> Modern SCM
3. All fields in the Git section appear to be reset to their defaults (ie. empty fields with the "Discover branches" behavior added)
   • The fields need to be re-entered before saving any changes.... Painful!

Strangely enough, the widget seems to have read in the appropriate data/branch information as the "Default version" field has the "Currently maps to revision: xxxxx" set correctly!

There are no errors in our log (which is filled with Docker Container Watchdog info messages and that's about it!)

Like others here we have -Dpermissive-script-security.enabled=no_security, but I'm not sure that's a red herring? We're running permissive-script-security: 0.7. Not sure how it would be related, but we also get the empty "pipeline script" field like in JENKINS-59145. I had assumed that was because I'm configuring the job using the JobDSL, but perhaps it's related to this plugin too??

Expand comment: Tim Patterson added a comment - 2022-09-07 07:44

Tim Patterson added a comment - 2022-09-07 07:44 We're still getting this issue and have been for ages. We're running Jenkins 2.346.1. Steps: Browse to "Manage Jenkins -> Configure System" page Browse to the Global Pipeline Libraries -> Modern SCM All fields in the Git section appear to be reset to their defaults (ie. empty fields with the "Discover branches" behavior added) The fields need to be re-entered before saving any changes.... Painful! Strangely enough, the widget seems to have read in the appropriate data/branch information as the "Default version" field has the "Currently maps to revision: xxxxx" set correctly! There are no errors in our log (which is filled with Docker Container Watchdog info messages and that's about it!) Like others here we have -Dpermissive-script-security.enabled=no_security , but I'm not sure that's a red herring? We're running permissive-script-security: 0.7. Not sure how it would be related, but we also get the empty "pipeline script" field like in JENKINS-59145 . I had assumed that was because I'm configuring the job using the JobDSL, but perhaps it's related to this plugin too??

Collapse comment: Devin Nusbaum added a comment - 2022-09-07 14:23

Devin Nusbaum added a comment - 2022-09-07 14:23

Generally speaking, these kinds of problem are caused by a bug in some other (typically unpopular and unmaintained) plugin that is trying to render something on the page. For example, in JENKINS-62228, various plugins including hp-application-automation-tools-plugin were causing similar problems. You should be able to narrow down the issue by cloning your Jenkins controller (or backing up your main controller) and then disabling/uninstalling plugins one by one until the issue no longer appears. Use https://plugins.jenkins.io/ to check plugin installation stats so that you can start with the least popular plugins, since they are the most likely candidates to have serious unresolved bugs like this. Also, if you are not already running the latest versions of all plugins, you could try updating everything first to see if that resolves the issue.

Expand comment: Devin Nusbaum added a comment - 2022-09-07 14:23

Devin Nusbaum added a comment - 2022-09-07 14:23 Generally speaking, these kinds of problem are caused by a bug in some other (typically unpopular and unmaintained) plugin that is trying to render something on the page. For example, in JENKINS-62228 , various plugins including hp-application-automation-tools-plugin were causing similar problems. You should be able to narrow down the issue by cloning your Jenkins controller (or backing up your main controller) and then disabling/uninstalling plugins one by one until the issue no longer appears. Use https://plugins.jenkins.io/ to check plugin installation stats so that you can start with the least popular plugins, since they are the most likely candidates to have serious unresolved bugs like this. Also, if you are not already running the latest versions of all plugins, you could try updating everything first to see if that resolves the issue.

Collapse comment: Tim Patterson added a comment - 2022-09-07 23:23

Tim Patterson added a comment - 2022-09-07 23:23

Thanks dnusbaum. I took your advice and found that it was the "Mixing Security Realm Plugin" Version 1.3. I wouldn't say we have a heap of plugins (turns out there's 76!), but enough to be a pretty painful process of trial and error. Took me an hour or so.

Disabling that plugin solved my issues; the plugin itself still had other critical bugs last time I checked so we're not using it anyway! I've added that plugin component to this ticket.

Expand comment: Tim Patterson added a comment - 2022-09-07 23:23

Tim Patterson added a comment - 2022-09-07 23:23 Thanks dnusbaum . I took your advice and found that it was the "Mixing Security Realm Plugin" Version 1.3. I wouldn't say we have a heap of plugins (turns out there's 76!), but enough to be a pretty painful process of trial and error. Took me an hour or so. Disabling that plugin solved my issues; the plugin itself still had other critical bugs last time I checked so we're not using it anyway! I've added that plugin component to this ticket.