Hi!
How do I protect Jenkins from its own jobs and pipelines?
For instance, I can create a freestyle job with a script step that does
something like:
echo 'my own key' >> /home/jenkins/.ssh/authorized_keys
Also, I can write a pipeline like:
stage 'Destroy'
'rm -rf /home/jenkins'.execute
echo
Thank you for your response, Victor!
Below are my responses to your comments. Before that, however, for
background I should state that I work in a large enterprise in a highly
regulated industry. Thus my keen interest in security.
On Wednesday, March 30, 2016 at 3:31:18 PM UTC-5, Victor Martine
I really like the Pipeline Templates feature of Jenkins. I am using PL
templates to build/test/promote a variety of content types, such as Chef
Cookbooks.
Its important that I can modify and enhance these templates in a safe way
that does not adversely impact the users that instantiate these te
