Versions Compared

Old Version 3

changes.mady.by.user Yuri

Saved on

compared with

New Version 4

changes.mady.by.user Yuri

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Page Properties

Date

July 21th22nd, 2021

Scope of change

Status
colourBlue
titleCLOUD
,
Status
colourRed
titleDATACENTER
&
Status
colourYellow
titleSERVER

Summary of change

Vulnerability fix for custom JQL used.

Details of change

We’ve got a Vulnerability reported for our Release Management Cloud App in scope of Cloud Security Participant program. We fixed it there but also decided to go extra mile and change it for our Gadgets App as well.

Essence of change

Due to the fact that plain JQL that we use as additional filter for few of our gadgets could contain some of privacy information hard coded … we decided to change it for predefined JQL filters.

...

Info

Bare in mind that additional JQL filter should be available for your target audience. Otherwise if users don’t have access to it the gadget fails to render and appropriate error message will be shown.

...

How existing gadgets will work after the change

Post version upgrade and before you change custom JQL to predefined JQL filter existing gadgets will work as expected with only one limitation

...