Plugins commonly store user credentials and similar secrets, like API keys, access tokens, or just user names and passwords, to interface with other systems ...

Dec 6, 2023 · Access credentials from AWS Secrets Manager in your Jenkins jobs. This plugin is the high-level counterpart of the AWS Secrets Manager ...

Mar 22, 2024 · Secrets Manager module for the AWS SDK for Java.

Aug 21, 2023 · AWS Secrets Manager backend for the Jenkins SecretSource API. The plugin allows JCasC to interpolate string secrets from Secrets Manager.

Jan 24, 2024 · Attackers can retrieve binary secrets (see note below). Attackers know, or can guess, the user name of any user with Overall/Read permission.

Apr 9, 2024 · This plugin provides the AWS SDK for Java as a library to be used by other plugins. It follows the same versioning as the AWS SDK itself.

Jul 31, 2019 · ... secrets), as plugins could use the Secret type to store credentials encrypted on disk while not having the Secret type appear in their Java API.

Oct 19, 2022 · RemoteSystemProperties allows attackers able to control agent processes to obtain the values of Java system properties from the Jenkins ...

Identify the operations in code that can be potentially security sensitive. · Identify the nearest AccessControlled objects to check permissions with. · Identify ...