-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Request: Option to NOT expose build logs #92
Comments
I thought about this when it was added, makes sense to add configuration hooks for it. There shouldn't be any sensitive info in the build logs, but it can happen... |
Ahh, I think I've grokked your second point. I'd think there's not much value (currently) in allowing users to disable the pipeline summary altogether; at that point you're left with a check that just has a link to the job, at which point you may be better off suppressing the checks for job status altogether and just using the status API (whilst still retaining the ability to use checks api for e.g. junit, warnings-ng etc). |
Thanks a lot for this! I still have a (newbie) question though: how can I use the flag to suppress Log (from #93)? I'm not sure to understand if it is a property to set on my Jenkins administration settings, on the jobs (GH Org. Folder in my case) or on the Pipeline itself? I'm asking the question because I never, ever did anything to enable or specify the Checks (except switching from a Github Oauth to Github App). It's really really cool to have this enabled by default! But I'm not sure where to go once the new released plugin will be installed on my instance. (I volunteer to write something on the plugin, or Jenkins doc to show the case of course, but I need initial pointers). |
It's what is known as a Job behaviour or trait. It's done at job level configuration (or organisation / multi branch folder level) |
Yes that's right |
Ok, so I'll have to update my job through UI, or my Job-DSL config (with the new version installed of course). Is that correct? Is this related to my question or to the PR? I'm not sure to understand (more than it's some code from the plugin |
Means that in the multibranch config GUI you would select Status Checks Properties to customize, and from |
Yeah looks like you're right, this was the last property added: jenkinsci/github-checks-plugin@65a3ebf cc @mrginglymus |
I have a half-done change for the other half of this... |
Dependencies
N.A.
Feature Request
The pipeline summary output (#66) is really a NEAT feature, thanks a lot for implementing it!
However in certain cases, it would be interesting to not expose the build's log output.
I'm thinking of the use case of a public code, but with the build output exposing sensitive information even it should not: if the build fails, then the sensitive data is exposed out of Jenkins.
Example which happened with Terraform: a bug in the
0.13.1
version was outputing sensitive data, which could have been exposed on the public repo.The idea of this feature request can be splitted in 2 axes:
Is this description clear or do you need more information/details?
If it is, does it seem legit?
The text was updated successfully, but these errors were encountered: