-
Improvement
-
Resolution: Fixed
-
Minor
-
None
-
-
Jenkins 2.224
I propose to move the capability from the Suppress Stack Trace Plugin into core and clean it up a little bit. The existing plugin behavior is to show the trace to administrators and to connect it to a specific log message for other users. I propose to retain this behavior.
Jenkins has seen a significant rise in security-conscious use since this plugin was created. Jenkins should be more secure by default. While showing the stack trace isn't a security vulnerability, not showing the trace is standard, expected industry behavior.
- relates to
-
JENKINS-17782 Internal stack traces exposed to users
-
- Resolved
-
[JENKINS-60410] Suppress stack traces in core
Released As | New: Jenkins 2.224 | |
Resolution | New: Fixed [ 1 ] | |
Status | Original: Open [ 1 ] | New: Resolved [ 5 ] |
Link |
New:
This issue relates to |