• Stan Hu's avatar
    Fix Service Side Request Forgery in JenkinsDeprecatedService · dd7a0992
    Stan Hu authored
    We noticed requests on some ReactiveCache jobs going to localhost, and
    it appears that JenkinsDeprecatedService may have had legacy code to
    allow localhost requests instead of using the setting defaults. This
    likely happened because all the changes were made in CE and not EE.
    
    To fix this, we now remove the explicit argument and allow `UrlBlocker`
    to use the default settings.
    dd7a0992
jenkins_deprecated_service_spec.rb 7.15 KB