Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Minor
Component/s: github-branch-source-plugin
Labels:
None
Environment:

Hide
Jenkins 2.486
Plugins as listed in https://github.com/MarkEWaite/docker-lfs/blob/26e470ee033d35ccf321dc80db358a8d81d9f321/plugins.txt#L65

Show
Jenkins 2.486 Plugins as listed in https://github.com/MarkEWaite/docker-lfs/blob/26e470ee033d35ccf321dc80db358a8d81d9f321/plugins.txt#L65

Similar Issues:

Show
Epic Link:
CSP compatibility for Jenkins plugins

With Jenkins 2.486 and the most recent releases of plugins, a CSP violation is reported when I configure a GitHub organization folder like https://github.com/MarkEWaite and enable avatar.

Configuration page looks like:

The CSP violation report looks like this:

11/26/24 8:57:15 PM	Mark Waite	jenkins.branch.OrganizationFolderViewHolder$ViewImpl (Branch API Plugin)	img-src	https://avatars.githubusercontent.com/u/156685?v=4&s=48
11/26/24 8:57:16 PM	Mark Waite	hudson.model.AllView	img-src	https://avatars.githubusercontent.com/u/156685?v=4&s=32

I'm not sure if the problem is in the GitHub Branch Source plugin or the SCM API plugin.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

github-branch-source-csp-violation.png
78 kB
2024-11-27 04:20

Assignee:: Unassigned

Reporter:: Mark Waite

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2024-11-27 04:24

Updated:: 2024-11-27 04:24

Details

Description

Attachments

Attachments

Activity

People

Dates