-
Improvement
-
Resolution: Fixed
-
Minor
-
None
Kubernetes credentials plugin is not FIPS compliant.
It allows skipping TLS verify which should not be allowed in a FIPS 140-2 environment.
It can also expose credentials through non TLS connection, which should not be allowed in a FIPS 140-2 environment.
- causes
-
JENKINS-73610 FIPS compliance checks fail when serverUrl isn't defined (not mandatory for kubeconfig)
-
- Closed
-
- links to
This change appears to have introduced a bug that I've just raised on https://issues.jenkins.io/browse/JENKINS-73610