[JIRA] (JENKINS-25804) Whitelisted signature presets for Java standard APIs and Jenkins core APIs
Title: Message Title Jesse Glick commented on JENKINS-25804 Re: Whitelisted signature presets for Java standard APIs and Jenkins core APIs Unrelated to this issue Sorin Sbarnea. Add Comment This message was sent by Atlassian JIRA (v7.3.0#73011-sha1:3c73d0e) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-25804) Whitelisted signature presets for Java standard APIs and Jenkins core APIs
Title: Message Title Sorin Sbarnea commented on JENKINS-25804 Re: Whitelisted signature presets for Java standard APIs and Jenkins core APIs I also have a problem related to this, It seems that I need to add "hudson.plugins.git.GitSCM getBranches" because my jobs fail with this error: org.jenkinsci.plugins.scriptsecurity.sandbox.RejectedAccessException: Scripts not permitted to use method hudson.plugins.git.GitSCM getBranches The big problem is that is currently impossible to approve these because this is never reaching the scriptApproval page, which also does not allow us to introduce free-form text. How to solve this? Add Comment This message was sent by Atlassian JIRA (v7.3.0#73011-sha1:3c73d0e) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-25804) Whitelisted signature presets for Java standard APIs and Jenkins core APIs
Title: Message Title Jesse Glick reopened an issue I wanted this left open to track the task of proactively whitelisting a lot of things as a streamlined batch operation, rather than reactively whitelisting things people have bothered to complain about as relatively expensive one-off PRs. Admittedly it is a bit open-ended, but there are some plausible success criteria. For example, everything in java.lang and java.util (as of Java 7, say) that looks safe should be added. Jenkins / JENKINS-25804 Whitelisted signature presets for Java standard APIs and Jenkins core APIs Change By: Jesse Glick Resolution: Fixed Status: Resolved Reopened Assignee: Jesse Glick Add Comment This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
[JIRA] (JENKINS-25804) Whitelisted signature presets for Java standard APIs and Jenkins core APIs
Title: Message Title ikedam resolved as Fixed Christian Höltje You're right. The mechanism to define whitelists are already available, and I'll create pull requests each time when I want to whitelist something. Jenkins / JENKINS-25804 Whitelisted signature presets for Java standard APIs and Jenkins core APIs Change By: ikedam Status: Open Resolved Resolution: Fixed Add Comment This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from
[JIRA] (JENKINS-25804) Whitelisted signature presets for Java standard APIs and Jenkins core APIs
Title: Message Title Christian Höltje commented on JENKINS-25804 Re: Whitelisted signature presets for Java standard APIs and Jenkins core APIs This ticket is a bit open-ended. What's the conditions that needed to be satisfied to mark this ticket closed? The plugin already ships with a small static whitelist. On a clean 2.7.4 Jenkins instance the "In-process Script Approval" is empty. Add Comment This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.