Followup to https://www.jenkins.io/security/advisory/2021-11-04/ :
- Remove the ability to disable agent-to-controller access control
- Remove the customizable callable allowlist
- Remove the capability for FilePath methods to operate in the agent-to-controller direction
- Remove the customizable file path filter allowlist supporting this
- Deprecate SlaveToMasterFileCallable
[JENKINS-67173] Remove agent-to-controller kill switch, FilePath support for a2c, etc.
Labels | New: security |
Remote Link | New: This issue links to "jep #381 (Web Link)" [ 27233 ] |
Status | Original: Open [ 1 ] | New: In Progress [ 3 ] |
Link | New: This issue relates to SECURITY-2456 [ SECURITY-2456 ] |
Link | New: This issue relates to SECURITY-642 [ SECURITY-642 ] |
Link | New: This issue relates to SECURITY-423 [ SECURITY-423 ] |
Link | New: This issue relates to SECURITY-787 [ SECURITY-787 ] |
Link | New: This issue relates to SECURITY-1791 [ SECURITY-1791 ] |
Link | New: This issue relates to SECURITY-2490 [ SECURITY-2490 ] |
Link |
New:
This issue relates to |