-
Task
-
Resolution: Unresolved
-
Minor
Note
While testing this plugin, evaluate whether the third-party libraries in src/main/webapp are compatible with CSP in restrictive mode. The plugin may need to be upgraded from jQuery 1.x to 3.x to fully function in CSP restrictive mode.
Problems
== Inline Event Handler
Line: 6
----
<a class="issue-file block link-style-none collapsible ${initialCollapse}"
onclick="Klocwork.toggle(this, 'issueDetails${groupCount}')">
----
== Inline Event Handler
Line: 44
----
<a id="${idPrefix}issueLinkElement${issueId}"
class="link-style-none ${traceClass} block collapsed"
onclick="Klocwork.toggle(this, 'fullIssueDetails${issueId}')">
----
== Inline Event Handler
Line: 56
----
<button id="showIssueCitation${issueId}" class="button-edit button-blank" onclick="event.stopPropagation();Klocwork.showAuthenticationOrCitation(${issueId})">
----
== Inline Event Handler
Line: 84
----
<button class="issue-cite-save-control" id="issueCiteSave${issueId}" onclick="Klocwork.saveCitation(${issueId})">
----
== Inline Event Handler
Line: 85
----
<button class="issue-cite-save-control" id="issueCiteCancel${issueId}" onclick="Klocwork.cancelCitation(${issueId})">
----
Solution
https://www.jenkins.io/doc/developer/security/csp/#inline-event-handlers
