The easiest way to store secrets is to store them in a field of the type Secret, and access that field in your other code via a getter that returns the same ...
Missing: web | Show results with:web
Jan 24, 2024 · This advisory announces vulnerabilities in the following Jenkins deliverables: Jenkins (core); Git server Plugin · GitLab Branch Source ...
Identify the operations in code that can be potentially security sensitive. · Identify the nearest AccessControlled objects to check permissions with. · Identify ...
Cross-Site Scripting (XSS) is a web application vulnerability that allows users with the ability to control what gets shown to other users on a web page to ...
May 13, 2022 · This plugin uses Probely to scan your web application for security vulnerabilities. It enables security testing in your CI/CD pipeline.
Oct 19, 2022 · This vulnerability allows attackers with permission to define untrusted Pipeline libraries and to define and run sandboxed Pipelines, to bypass ...
Sken.ai offers a DevOps-first Continuous Application Security Scanning. With Sken, your apps on Jenkins will be automatically scanned for security ...
Dec 6, 2023 · Access credentials from AWS Secrets Manager in your Jenkins jobs. This plugin is the high-level counterpart of the AWS Secrets Manager ...
The Jenkins security team created a custom code scanner based on GitHub's CodeQL. It is capable of finding vulnerabilities common in Jenkins plugins. This page ...
Mar 15, 2022 · This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure or Item/Create permissions.
Missing: web | Show results with:web