Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-48939

PRQA Plugin is affected by JEP-200 in Jenkins 2.102+

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      During the code inspections for JEP-200 I have discovered that the plugin is most likely affected by this security hardening in the Jenkins core.

      • Plugin uses PRQAComplianceStatus in MasterToSlaveCallable operations
      • This class comes from an external library without a "Jenkins-ClassFilter-Whitelisted" manifest entry
      • In Jenkins 2.102+ such classes will be blacklisted unless a workaround is applied

      You can find more guidelines for plugin developers in this blogpost: https://jenkins.io/blog/2018/01/13/jep-200/#for-plugin-developers. Please let us know if you need any additional info or reviews regarding this issue.

        Attachments

          Issue Links

            Activity

            oleg_nenashev Oleg Nenashev created issue -
            oleg_nenashev Oleg Nenashev made changes -
            Field Original Value New Value
            Environment Jenkins 2.102+
            oleg_nenashev Oleg Nenashev made changes -
            Assignee Praqma Support [ praqma ] Igor Kostenko [ igorkostenko ]
            jglick Jesse Glick made changes -
            Remote Link This issue links to "Page (Jenkins Wiki)" [ 19818 ]
            oleg_nenashev Oleg Nenashev made changes -
            Remote Link This issue links to "Page (Jenkins Wiki)" [ 19818 ]
            jglick Jesse Glick made changes -
            Labels jep-200 JEP-200
            igorkostenko Igor Kostenko made changes -
            Assignee Igor Kostenko [ igorkostenko ] Marcos Bento [ marcos_bento ]
            oleg_nenashev Oleg Nenashev made changes -
            Link This issue relates to JENKINS-50333 [ JENKINS-50333 ]
            oleg_nenashev Oleg Nenashev made changes -
            Summary PRQA Plugin is likely affected by JEP-200 in Jenkins 2.102+ PRQA Plugin is affected by JEP-200 in Jenkins 2.102+
            oleg_nenashev Oleg Nenashev made changes -
            Link This issue is duplicated by JENKINS-50333 [ JENKINS-50333 ]
            oleg_nenashev Oleg Nenashev made changes -
            Priority Minor [ 4 ] Blocker [ 1 ]
            marcos_bento Marcos Bento made changes -
            Status Open [ 1 ] In Progress [ 3 ]
            marcos_bento Marcos Bento made changes -
            Status In Progress [ 3 ] In Review [ 10005 ]
            marcos_bento Marcos Bento made changes -
            Status In Review [ 10005 ] Resolved [ 5 ]
            Resolution Fixed [ 1 ]

              People

              • Assignee:
                marcos_bento Marcos Bento
                Reporter:
                oleg_nenashev Oleg Nenashev
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: