• Type: Bug
• Resolution: Fixed
• Priority: Minor
• Component/s: emailext-template-plugin
• Labels:

  • CSP

[JENKINS-74892] [emailext-template] CSP compliance for ExtEmailTemplateManagement

Basil Crow created issue - 2024-11-20 18:26

Basil Crow made changes - 2024-11-20 18:34

Description

Original: h3. Problem [https://github.com/jenkinsci/emailext-template-plugin/blob/87963f42ab52ee2f64dac1a2cf61ca9be8a76357/src/main/resources/org/jenkinsci/plugins/emailext_template/ExtEmailTemplateManagement/index.groovy#L63-L69] h3. Solution [https://www.jenkins.io/doc/developer/security/csp/]

New: h3. Problem [https://github.com/jenkinsci/emailext-template-plugin/blob/87963f42ab52ee2f64dac1a2cf61ca9be8a76357/src/main/resources/org/jenkinsci/plugins/emailext_template/ExtEmailTemplateManagement/index.groovy#L63-L69] Also the same file has an {{onclick}} handler h3. Solution [https://www.jenkins.io/doc/developer/security/csp/]

Yaroslav Afenkin made changes - 2024-11-21 15:24

Assignee

New: Yaroslav Afenkin [ yafenkin ]

Yaroslav Afenkin made changes - 2024-11-21 15:35

Status

Original: Open [ 1 ]

New: In Progress [ 3 ]

Yaroslav Afenkin made changes - 2024-11-22 11:42

Remote Link

New: This issue links to "jenkinsci/emailext-template-plugin/pull/128 (Web Link)" [ 30250 ]

Yaroslav Afenkin made changes - 2024-11-22 11:42

Status

Original: In Progress [ 3 ]

New: In Review [ 10005 ]

Mark Waite made changes - 2024-11-23 11:49

Released As		New: https://github.com/jenkinsci/emailext-template-plugin/releases/tag/219.v14fff547f78d
Resolution		New: Fixed [ 1 ]
Status	Original: In Review [ 10005 ]	New: Closed [ 6 ]