Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-57344

Whitelist requests for some java.io and other misc calls

    Details

    • Similar Issues:
    • Released As:
      script-security 1.61

      Description

      The following is a sample of some of the methods that are safe to be whitelisted and are quite useful:

      • StringReader.read
      • StringWriter.append
      • new PrintWriter(Writer) (useful for capturing stacktraces as strings)
      • List.add
      • reverse() on List
      • new LinkedHashSet()

        Attachments

          Activity

          Show
          haridsv Hari Dara added a comment - PR:  https://github.com/jenkinsci/script-security-plugin/pull/249
          Hide
          dnusbaum Devin Nusbaum added a comment -

          These methods were added to the whitelist in version 1.61 of Script Security Plugin.

          Thanks Hari Dara, sorry I forgot to update the ticket!

          Show
          dnusbaum Devin Nusbaum added a comment - These methods were added to the whitelist in version 1.61 of Script Security Plugin. Thanks Hari Dara , sorry I forgot to update the ticket!

            People

            • Assignee:
              haridsv Hari Dara
              Reporter:
              haridsv Hari Dara
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: