{"id":19672346,"url":"https://github.com/wcm-io-devops/ansible-jenkins-script-security","last_synced_at":"2026-05-06T03:32:50.668Z","repository":{"id":54729086,"uuid":"148782233","full_name":"wcm-io-devops/ansible-jenkins-script-security","owner":"wcm-io-devops","description":"Ansible role for managing script security","archived":false,"fork":false,"pushed_at":"2022-03-02T09:08:11.000Z","size":20,"stargazers_count":1,"open_issues_count":1,"forks_count":2,"subscribers_count":10,"default_branch":"master","last_synced_at":"2025-09-09T06:58:29.986Z","etag":null,"topics":["ansible","ansible-role","jenkins","script-security","scriptapproval"],"latest_commit_sha":null,"homepage":null,"language":"Groovy","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/wcm-io-devops.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-09-14T11:57:16.000Z","updated_at":"2022-03-02T09:08:14.000Z","dependencies_parsed_at":"2022-08-14T01:00:59.239Z","dependency_job_id":null,"html_url":"https://github.com/wcm-io-devops/ansible-jenkins-script-security","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/wcm-io-devops/ansible-jenkins-script-security","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wcm-io-devops%2Fansible-jenkins-script-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wcm-io-devops%2Fansible-jenkins-script-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wcm-io-devops%2Fansible-jenkins-script-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wcm-io-devops%2Fansible-jenkins-script-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/wcm-io-devops","download_url":"https://codeload.github.com/wcm-io-devops/ansible-jenkins-script-security/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wcm-io-devops%2Fansible-jenkins-script-security/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32677927,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-06T02:33:58.958Z","status":"ssl_error","status_checked_at":"2026-05-06T02:33:39.611Z","response_time":117,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","ansible-role","jenkins","script-security","scriptapproval"],"created_at":"2024-11-11T17:11:49.230Z","updated_at":"2026-05-06T03:32:50.649Z","avatar_url":"https://github.com/wcm-io-devops.png","language":"Groovy","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![CI](https://github.com/wcm-io-devops/ansible-jenkins-script-security/workflows/CI/badge.svg?branch=master\u0026event=push)](https://github.com/wcm-io-devops/ansible-jenkins-script-security/actions?query=workflow%3ACI)\n\n# wcm_io_devops.jenkins_script_security\n\nThis role manages the approval of signatures for the\n[Script Security Plugin](https://wiki.jenkins.io/display/JENKINS/Script+Security+Plugin).\nThe role can add or remove signatures by keeping unmanaged signatures in place.\n\nFor the management a groovy script is used that is directly executed in\nthe Jenkins, so the changes are applied immediately without need to\nrestart the instance.\n\n## Requirements\n\nThis role requires Ansible 2.7 or higher and a running Jenkins on the\ntarget instance.\n\n## Role Variables\n\nAvailable variables are listed below, along with their default values.\n\n    jenkins_script_security_admin_username: admin\n\nJenkins admin username.\n\n    jenkins_script_security_admin_password: admin\n\nJenkins admin password.\n\n    jenkins_script_security_jenkins_hostname: localhost\n\nHostname of the jenkins instance.\n\n    jenkins_script_security_jenkins_port: 8080\n\nHTTP port of the jenkins instance.\n\n    jenkins_script_security_jenkins_url_prefix: \"\"\n\nUrl prefix of the jenkins instance, e.g. when running in tomcat.\n\n    jenkins_script_security_jenkins_update_dir: \"{{ jenkins_plugins_jenkins_home }}/updates\"\n\nPath to the jenkins update directory.\n\n    jenkins_script_security_jenkins_base_url: \"http://{{ jenkins_script_security_jenkins_hostname }}:{{ jenkins_script_security_jenkins_port }}{{ jenkins_script_security_jenkins_url_prefix }}\"\n\nThe base url of the jenkins instance.\n\n    jenkins_script_security_approved_signatures_present: []\n\nList of signature to approve. List of strings as present in the\nscriptApproval.xml but without the encapsulating `\u003cstring\u003e\u003c/string\u003e`.\n\n    jenkins_script_security_approved_signatures_absent: []\n\nList of signatures to remove. List of strings as present in the\nscriptApproval.xml but without the encapsulating `\u003cstring\u003e\u003c/string\u003e`.\n\n## Dependencies\n\nThe role has no dependencies.\n\n## Example Playbook\n\nApproves the signatures for creating a new ArrayList and getting the\nindex of an Element in a list.\n\n\t- hosts: jenkins\n\t  vars:\n\t    jenkins_script_security_approved_signatures_present:\n          - method java.util.List indexOf java.lang.Object\n          - new java.util.ArrayList\n\t  roles:\n\t    - role: wcm_io_devops.jenkins_script_security\n\n## License\n\nApache 2.0","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwcm-io-devops%2Fansible-jenkins-script-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwcm-io-devops%2Fansible-jenkins-script-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwcm-io-devops%2Fansible-jenkins-script-security/lists"}