-
Type:
New Feature
-
Resolution: Unresolved
-
Priority:
Minor
-
Component/s: matlab-plugin
Jenkins 2.539+ has a built-in Content Security Policy feature.
Docs: https://www.jenkins.io/doc/book/security/csp/Â
This plugin is not compatible with it yet due to:
- https://github.com/jenkinsci/matlab-plugin/blob/9bfbb7b29b5feaf5f826ddfba35355c318d66894/src/main/resources/com/mathworks/ci/TestResultsViewAction/index.jelly#L149
- a number of onclick event handlers around https://github.com/jenkinsci/matlab-plugin/blob/9bfbb7b29b5feaf5f826ddfba35355c318d66894/src/main/resources/com/mathworks/ci/TestResultsViewAction/index.jelly#L11-L121Â
As a result, admins have to choose between this plugin working, and improved security.
This plugin should be made compatible with CSP and its code rearranged.
Developer docs: https://www.jenkins.io/doc/developer/security/csp/Â
