Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-41162

Input descriptions can contain html tags - allow or prevent

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Major Major
    • blueocean-plugin
    • None
    • pannonian, iapetus

      you will find markup in the description of the last parameter

       <br/><strong>NOTE:</strong> Uses the above BLUEOCEAN_BRANCH_NAME to determine the upstream build Job name fr

      Maybe we want to allow to use markdown instead and parse the description before display. That would give a lot of power to the user.

      The problem with allowing html directly is XSS (Cross-site Scripting)

        1. Screen Shot 2018-04-13 at 15.53.02.png
          14 kB
          Deiwin Sarjas
        2. Screen Shot 2018-04-13 at 15.53.12.png
          18 kB
          Deiwin Sarjas
        3. Screenshot from 2017-01-18 10-02-05.png
          58 kB
          Thorsten Scherler

            tfennelly Tom FENNELLY
            tscherler Thorsten Scherler
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: