Re: Securing build scripts when building pull requests

Hi, On Thu, May 16, 2019 at 12:11:54PM -0700, Christopher Weaver wrote: > For a project I work on, we have set up Jenkins, using the GitHub Branch > Source Plugin, to do automatic builds for pushes to our repository, > including test builds for pull requests. This is all working, but I am > co

Re: Securing build scripts when building pull requests

The pipeline library on ci.jenkins.io is a good example of a library written to safely handle pull requests which might be malicious. Refer to isTrusted and how it is used to safeguard operations. I believe

Re: node parameter makes pipeline fail even if it's unused

On Thu, May 16, 2019 at 7:13 AM gbon wrote: > Hi All, > Asking for advice on this weird behavior: > > I have a (declarative) pipeline that works perfectly fine and selects the > agent like so > > pipeline { > agent { > node { > label "SOME_LABEL" > } > } > ... > } > > If I edi

Re: node parameter makes pipeline fail even if it's unused

I failed to mention that performing git operations over NFS is much slower than performance those operations with a local file system. I'd generally recommend that file systems on static agents should be locally attached file systems rather than network file systems if possible. On Fri, May 17, 2

Stop logged in users from cancelling a queued job

Hi, I am able to see that one of my authenticated use(don't know which one) kills the jobs in my Jenkins queue. I wanted to know if I can either get the system from which this request was made IP or hostname or if I can stop the user from doing so altogether. I need urgent help on this. regard

Re: Stop logged in users from cancelling a queued job

On my setup here, our users authenticate on Jenkins using AD, and i use the Role Strategy Plugin to manage what each user can or can't do. Follow this helpful link i've used, when first setting this up: https://medium.com/modern-s