Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Groovy script runner security

Joachim Westlun
Joachim Westlund November 27, 2013

Hi!

I saw this youtube clip: http://www.youtube.com/watch?v=qDw2y-UYEXI

I'm trying to get my company to install Script runner but now I feel hesitant after seeing this clip.

I saw that the version of script runner hacked in the clip was older then the latest version available now.

I couldn't tell when I looked thru the version history that this issue has been fixed. Does anyone know anything about this?

Our jira-system will be located within the intranet so this is perhaps no issue? Can anyone spread any light on this?

Best regards

Joachim Westlund

Answer
Watch
Like Be the first to like this
248 views

1 answer

1 accepted

0 votes
Answer accepted
JamieA
JamieA
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 27, 2013

Hey... I think that guy was trying to make a name for himself as a security researcher or something. But it was fixed around 14 months ago - https://marketplace.atlassian.com/plugins/com.onresolve.jira.groovy.groovyrunner/versions#b603 - so if you have updated since then there is no issue.

View More Comments
Joachim Westlun
Joachim Westlund December 1, 2013

Oh! Thank you for the answer! ;)

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events