Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-74564

[metrics-aggregation] Extract inline script block in io/jenkins/plugins/metrics/view/MetricsView/index.jelly

XMLWordPrintable

      Note

      While testing this plugin, evaluate whether the third-party libraries in webjars are compatible with CSP in restrictive mode. The plugin may need to be upgraded from jQuery 1.x to 3.x to fully function in CSP restrictive mode.

      Problem

      == Inline Script Block
Line: 175
----
<script>var view =
        <st:bind value="${it}"/>
      </script>
----

      Solution

      https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks

          [JENKINS-74564] [metrics-aggregation] Extract inline script block in io/jenkins/plugins/metrics/view/MetricsView/index.jelly

          Basil Crow created issue -
          Basil Crow made changes -
          Assignee Original: Andreas Pabst [ andipabst ]
          Basil Crow made changes -
          Description Original: h4. Problems

          {noformat}
          == Inline Script Block
          Line: 175
          ----
          <script>var view =
                  <st:bind value="${it}"/>
                </script>
          ----

          == Inline Script Block
          Line: 175
          ----
          <script>var view =
                  <st:bind value="${it}"/>
                </script>
          ----
          {noformat}

          h4. Solution

          [https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks]
          		 New: h4. Problem

          {noformat}
          == Inline Script Block
          Line: 175
          ----
          <script>var view =
                  <st:bind value="${it}"/>
                </script>
          ----
          {noformat}

          h4. Solution

          [https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks]
          Summary Original: [metrics-aggregation] Extract inline script blocks in io/jenkins/plugins/metrics/view/MetricsView/index.jelly New: [metrics-aggregation] Extract inline script block in io/jenkins/plugins/metrics/view/MetricsView/index.jelly
          Basil Crow made changes -
          Description Original: h4. Problem

          {noformat}
          == Inline Script Block
          Line: 175
          ----
          <script>var view =
                  <st:bind value="${it}"/>
                </script>
          ----
          {noformat}

          h4. Solution

          [https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks]
          		 New: h1. Note

          *While testing this plugin, evaluate whether the third-party libraries in {{webjars}} are compatible with CSP in restrictive mode. The plugin may need to be upgraded from jQuery 1.x to 3.x to fully function in CSP restrictive mode.*

          h4. Problem

          {noformat}
          == Inline Script Block
          Line: 175
          ----
          <script>var view =
                  <st:bind value="${it}"/>
                </script>
          ----
          {noformat}

          h4. Solution

          [https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks]

            Unassigned Unassigned
            basil Basil Crow
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: