Loading...

This issue is archived. You can view it, but you can't modify it. Learn more

XML

Word

Printable

Type: Improvement
Resolution: Fixed
Priority: Minor
Component/s: core
Labels:
- CSP
- issue-exported-to-github

Epic Link:
CSP compatibility for Jenkins core
Released As:
2.447

eval call in hudson-behaviour.js renderOnDemand method

Culprit

https://github.com/jenkinsci/jenkins/blob/19edf146946dd0e1b8ec5b909d002ffca53e8209/war/src/main/webapp/scripts/hudson-behavior.js#L1004

Proposal

https://www.jenkins.io/doc/developer/security/csp/#eval-calls

Testing

https://www.jenkins.io/doc/developer/security/csp/#testing

links to

Assignee:: Daniel Beck
Reporter:: Yaroslav Afenkin

Created:: 2023-06-22 10:20
Updated:: 2025-11-25 14:31
Resolved:: 2024-02-27 15:03
Archived:: 2025-11-25 14:31