Child pages
  • Permissive Script Security Plugin

Due to some maintenance issues, this service has been switched in read-only mode, you can find more information about the why

and how to migrate your plugin documentation in this blogpost

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Next »

Turn on permissive mode of Script Security Plugin. Problematic signatures will be logged but access will not be rejected.

Plugin Information

View Permissive Script Security on the plugin site for more information.

This plugin enables execution of unsecured groovy scripts on Jenkins master. Do not use it unless you know what you are doing.

Suppressing the security put in place in several Jenkins plugins is discouraged though sometimes useful practice. For example, migrating configuration from a plugin version that allows unsecured script execution to the secured version. Enabling this temporarily, will not block on potentially unsafe signatures so they can be evaluated and whitelisted and the plugin can be uninstalled again.

The plugin is disabled after installation. It can be enabled providing -Dpermissive-script-security.enabled=true property to Jenkins master JVM or running following groovy script org.jenkinsci.plugins.permissivescriptsecurity.PermissiveWhitelist.enabled=true. Note that combination filters from Matrix Project plugin are evaluated at Jenkins boot time so it needs to be enabled via property for affected jobs to load successfully.

  • No labels