Any sub process of bamboo is run under the account of the bamboo agent. If a user is using the script task he has the same permissions and can:
a) inspect the folders of other build jobs
b) inspect the environment variables of other build jobs and find sensitive details like passwords or tokens
Is there any way to prevent that?
G’day Community! As we gear up to introduce Bamboo Data Center to the world, we wanted to make sure that we shared a bit more about Bamboo, the product. Our team has put together an overview video ...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events