Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

jenkinsci / script-security-plugin Public

Notifications You must be signed in to change notification settings
Fork 165
Star 68

Code
Pull requests 10
Actions
Projects
Security
Insights

Additional navigation options

Code
Pull requests
Actions
Projects
Security
Insights

Releases: jenkinsci/script-security-plugin

Releases Tags

Releases · jenkinsci/script-security-plugin

1175.v4b_d517d6db_f0

24 May 19:49

github-actions

1175.v4b_d517d6db_f0

4bd517d

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1175.v4b_d517d6db_f0

🐛 Bug fixes

JENKINS-63766 - Work around JDK-8231454 (#420) @basil

Contributors

basil

Assets 2

All reactions

1172.v35f6a_0b_8207e

17 May 13:44

daniel-beck

1172.v35f6a_0b_8207e

35f6a0b

Compare

Choose a tag to compare

View all tags

1172.v35f6a_0b_8207e

🔒 Security

Fix SECURITY-2116
Hardening: Do not automatically approve unmodified, unsandboxed scripts when administrators submit job configuration forms. For better compatibility, Pipeline: Groovy should be updated to version 2692.v76b_089ccd026, which requires Pipeline: Job to be simultaneously updated to version 1181.va_25d15548158.

Assets 2

All reactions

1158.v7c1b_73a_69a_08

22 Apr 17:57

github-actions

1158.v7c1b_73a_69a_08

7c1b73a

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1158.v7c1b_73a_69a_08

🚀 New features and improvements

Whitelist net.sf.json.JSON isEmpty() (#402) @offa
JENKINS-62708 - Add JCasC support for approved script hashes (#329) @MarkRx

🐛 Bug fixes

Optimize the display of ScriptApproval page (#408) @Mr-LiuDC

👻 Maintenance

Switch to Temurin distribution (#400) @offa
Make a comment more inclusive (#405) @MarkEWaite

📦 Dependency updates

Bump actions/checkout from 2.4.0 to 3.0.2 (#412) @dependabot

Contributors

MarkEWaite, offa, and 3 other contributors

Assets 2

All reactions

1146.vdf547f19a_473

21 Apr 05:37

github-actions

1146.vdf547f19a_473

df547f1

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1146.vdf547f19a_473

📦 Dependency updates

Update plugin parent POM and BOM (#411) @basil

Contributors

basil

Assets 2

All reactions

1145.vb_cf6cf6ed960

18 Mar 18:30

github-actions

1145.vb_cf6cf6ed960

bcf6cf6

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1145.vb_cf6cf6ed960

🐛 Bug fixes

JENKINS-68070 - Adapt generic-whitelist to Java standard library changes in Java 15+ (#394) @dwnusbaum

Contributors

dwnusbaum

Assets 2

All reactions

1140.vf967fb_efa_55a_

27 Feb 18:52

github-actions

1140.vf967fb_efa_55a_

f967fbe

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1140.vf967fb_efa_55a_

🐛 Bug fixes

Fix broken icon on modern Jenkins versions (#384) @NotMyFault

📦 Dependency updates

JENKINS-65237 - Bump Groovy from 2.4.12 to 2.4.21 (#373) @basil

Contributors

basil and NotMyFault

Assets 2

All reactions

1138.v8e727069a_025

22 Feb 17:42

github-actions

1138.v8e727069a_025

8e72706

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1138.v8e727069a_025

📦 Dependency updates

Bump plugin from 4.31 to 4.33 (#381) @dependabot

🚦 Tests

Do not use Guava's NullOutputStream (#387) @raul-arabaolaza
Enforce use of Outer$Inner syntax in whitelists (#383) @jglick

Contributors

jglick, raul-arabaolaza, and dependabot

Assets 2

All reactions

1131.v8b_b_5eda_c328e

07 Jan 17:36

github-actions

1131.v8b_b_5eda_c328e

8bb5eda

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1131.v8b_b_5eda_c328e

🚀 New features and improvements

JENKINS-66735 - : Whitelist some common signatures and additional signatures from CauseOfInterruption (#365) @haridsv

📦 Dependency updates

Bump parent, baseline, BOM (#382) @jglick

Contributors

jglick and haridsv

Assets 2

All reactions

1125.v132f99385e1b_

07 Jan 15:49

github-actions

1125.v132f99385e1b_

132f993

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Learn about vigilant mode.

Compare

Choose a tag to compare

View all tags

1125.v132f99385e1b_

🚀 New features and improvements

JENKINS-66888 - Whitelist java.time.temporal.ChronoUnit.* (#368) @spike-rabbit

📦 Dependency updates

Bump actions/checkout from 2.3.4 to 2.4.0 (#375) @dependabot
Bump jenkins-infra/jenkins-maven-cd-action from 1.1.0 to 1.2.0 (#376) @dependabot
Bump git-changelist-maven-extension from 1.2 to 1.3 (#379) @dependabot
EOL JSR 305 (#380) @basil