Do Plugins Store Credentials In A Secure Way? - DevOps World | Jenkins World 2019
This is a speaker blog post for a DevOps World | Jenkins World 2019 talk in Lisbon, Portugal and has been posted in line with NCC Group responsible disclosure policy.
Related Jenkins security advisories:
2017-11-08,
2017-11-16,
2018-06-25,
2018-07-30,
2018-09-25,
2019-02-19,
2019-03-06,
2019-03-25,
2019-04-03,
2019-04-17,
2019-08-07,
2019-09-12,
2019-10-01,
2019-10-16,
2019-10-23.
Some of the vulnerabilities have been announced without a fix, see Jenkins Security Spring Cleaning 2019.
The most of the announced vulnerabilities are fixed at the moment of this...
