zuul
/
zuul
Code Issues Proposed changes
zuul/tests
History
James E. Blair ad7bd9c6f2 Block connection related variables 
There are some special variables that should be only set by nodepool
and not on job level [1]. Overriding those could make mitm attacks
possible. Fix this by blocking those variables in the job definition
and data return.

[1] https://docs.ansible.com/ansible/latest/reference_appendices/special_variables.html#connection-variables

Story: 2008672
Task: 41964
Change-Id: Ie85fe110c092df7ef816af20356a55426cbebcb2
Co-Authored-By: Tobias Henkel <tobias.henkel@bmw.de>
 		2021-06-24 06:24:23 -07:00
..
fixtures Block connection related variables 2021-06-24 06:24:23 -07:00
nodepool Provide statsd client to Nodepool and make scheduler optional 2021-04-30 12:12:28 +02:00
remote Prohibit invalid uri usages on localhost 2020-09-23 18:59:52 +00:00
unit Block connection related variables 2021-06-24 06:24:23 -07:00
zuul_client Merge "test zuul-client build-info" 2021-06-10 14:59:39 +00:00
__init__.py Add non-voting jobs. 2012-08-23 23:20:09 +00:00
base.py Freeze job variables at start of build 2021-06-24 06:24:23 -07:00
encrypt_secret.py Make tests' encrypt_secret.py work with python3 2017-10-19 18:09:57 +00:00
fake_graphql.py Fetch can-merge info when updating a pull-request 2020-09-23 12:03:55 +02:00
fakegithub.py Save superfluous api requests in check run reporting 2020-11-04 08:52:28 +01:00
make_playbooks.py Use libyaml if possible 2017-04-04 11:49:05 -07:00
print_layout.py Do not add implied branch matchers in project-templates 2017-09-30 10:19:07 -07:00