Tag
jenkins-security
Safeguard articles tagged "jenkins-security" — guides, analysis, and best practices for software supply chain and application security.
3 articles
DevSecOps
How to secure Jenkins pipelines
A step-by-step guide to secure Jenkins pipelines: hardening the controller, fixing credentials management, RBAC setup, agent isolation, and supply chain verification.
Feb 10, 20268 min read
DevSecOps
Jenkins Stapler Unauthenticated RCE Mass-Exploited for Cr...
CVE-2018-1000861 let attackers hit Jenkins Stapler unauthenticated, planting cryptomining malware on exposed CI/CD build servers across the internet.
Nov 26, 20257 min read
Cloud Security
Jenkins plugin vulnerability trends report
Jenkins plugin CVEs keep piling up—missing permission checks, CSRF gaps, and a critical CVE-2024-23897 that attackers scanned for within days.
Nov 2, 20256 min read