Is there a way to use XStream without a blacklist?
9 views
Skip to first unread message
skuz...@redhat.com
Dec 12, 2017, 6:32:25 PM12/12/17
to Jenkins Users
global libraries is secure and we trust our developers. We would like
not to see jobs fail for instance with:
Caused by: java.lang.UnsupportedOperationException: Refusing to marshal org.codehaus.groovy.runtime.ConvertedClosure for security reasons
at hudson.util.XStream2$BlacklistedTypesConverter.marshal(XStream2.java:452)
at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)
at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)
Is there a way to not use the BlacklistedTypesConverter? It is not
providing us with any use.
at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)
at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)
Is there a way to not use the BlacklistedTypesConverter? It is not
providing us with any use.
Reply all
Reply to author
Forward
0 new messages