Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-38254

Plugin impacted by SECURITY-170

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11

      The plugin is no longer working out-of-the-box because of SECURITY-170. As a temporary workaround, adding the following launch command to Jenkins does work:

      -Dhudson.model.ParametersAction.safeParameters=assemblaSourceSpaceId,assemblaAuthorName,assemblaDescription,assemblaSourceRepositoryUrl,assemblaTargetBranch,assemblaSourceRepositoryName,assemblaTargetRepositoryUrl,assemblaMergeRequestId,assemblaRefName,assemblaSourceBranch
      

        Attachments

          Activity

          Hide
          paveld Pavel Dotsulenko added a comment -

          Hi Daniel Pfeiffer, thanks for the report! We are working on a fix and we'll notify you as soon as new plugin version is released.

          Show
          paveld Pavel Dotsulenko added a comment - Hi Daniel Pfeiffer , thanks for the report! We are working on a fix and we'll notify you as soon as new plugin version is released.
          Hide
          paveld Pavel Dotsulenko added a comment -

          Hi Daniel Pfeiffer, new plugin version 1.1.4 has been pushed to the Jenkins plugin repo, it will available for download in the update center in 8-12 hours

          Show
          paveld Pavel Dotsulenko added a comment - Hi Daniel Pfeiffer , new plugin version 1.1.4 has been pushed to the Jenkins plugin repo, it will available for download in the update center in 8-12 hours

            People

            Assignee:
            paveld Pavel Dotsulenko
            Reporter:
            dpfeiffer Daniel Pfeiffer
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: