Unable to find Snowflake-related plugin in available plugin list in Jenkins

karthikbnayak · April 16, 2025, 7:26am

We need to integrating a Snowflake-related plugin into our Jenkins pipeline. We searched in Plugin List but we are unable to find the snowflake plugin in the avilable list. But we found that plugin in Github.Before proceeding with the implementation, we want to ensure that there are no known vulnerabilities or security concerns associated with this plugin.

Could you please let us know if there are any reported issues, advisories, or recommended best practices for securely integrating a Snowflake plugin in Jenkins?

We appreciate your support and guidance on this matter.

mawinter69 · April 16, 2025, 9:35pm

Are you talking about GitHub - snowflakedb/snowflake-jenkins-plugin: Jenkins plugin enabling isolated installation of Snowflake CLI.?
This plugin is not hosted by the Jenkins project so it is not known whether there are any vulnerabilities.
Looking at the code it might have a minor issue at one point where a @POST annotation should be used. It would allow attackers with Item/READ permission to list available installations.

If you intend to use this plugin I would suggest to ask them to open a hosting request here. The plugin was only started mid of last year so maybe they already have that in mind.

karthikbnayak · April 17, 2025, 9:45am

@mawinter69
Thanks for your replay its really helping us.

Topic		Replies	Views
Can't find users in plugin hosting request Infrastructure question , plugin-site	2	229	April 21, 2022
Our Plugin code has been forked by JenkinsCI Infrastructure	10	498	May 9, 2022
GitLab plugin on archlinux Using Jenkins	2	304	December 28, 2021
Build Failures and Plugin Errors Using Jenkins	3	736	July 10, 2024
Jenkins plugins update Ask a question question	32	694	July 4, 2024

Unable to find Snowflake-related plugin in available plugin list in Jenkins

Related topics