Branch: refs/heads/step-in-groovy2
  Home:   https://github.com/jenkinsci/workflow-cps-plugin
  Commit: b92da13dfc3a7be8291031481458f3766e50b407
      
https://github.com/jenkinsci/workflow-cps-plugin/commit/b92da13dfc3a7be8291031481458f3766e50b407
  Author: Kohsuke Kawaguchi <k...@kohsuke.org>
  Date:   2016-09-17 (Sat, 17 Sep 2016)

  Changed paths:
    M doc/step-in-groovy.md
    M src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlowDefinition.java
    M src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlowExecution.java
    M 
src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShellFactory.java
    M src/main/java/org/jenkinsci/plugins/workflow/cps/GroovyShellDecorator.java
    M 
src/main/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/GroovyShellDecoratorImpl.java
    M 
src/main/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/GroovyStep.java
    M 
src/main/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/GroovyStepDescriptor.java
    A 
src/main/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/GroovyStepExecutionCompiler.java
    R 
src/test/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/BankTellerSecureStepExecution.java
    M 
src/test/java/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/GroovyStepTest.java
    M 
src/test/resources/org/jenkinsci/plugins/workflow/cps/steps/ingroovy/BankTellerStepExecution.groovy

  Log Message:
  -----------
  Revisiting the security model

To make it easier for plugin developers to secure their steps written in
Groovy, do not allow untrusted code to directly call into
GroovyStepExecution.

This is achieved by inserting another classloader into the chain.

Supporting Andrew's pipeline model use case requires further work.


-- 
You received this message because you are subscribed to the Google Groups 
"Jenkins Commits" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to jenkinsci-commits+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to