diff options
author | Tobias Henkel <tobias.henkel@bmw.de> | 2019-02-23 09:18:50 +0100 |
---|---|---|
committer | Tobias Henkel <tobias.henkel@bmw.de> | 2019-02-28 18:09:22 +0100 |
commit | fcbb91582f47b4f1d2d3fb6843dfbc764bd8a6f5 (patch) | |
tree | 72ce2b804678e51c21950725553e36236bc4131f /releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml | |
parent | d60346181ba5f076a214f5d02103e0a3b24b10ac (diff) | |
download | zuul-fcbb91582f47b4f1d2d3fb6843dfbc764bd8a6f5.tar.gz |
Encode zuul.message with base64
Zuul recently added zuul.message which needs to be protected against
interpretation by jinja in ansible. This was initially done by marking
it with the !unsafe tag. However this has the disadvantage that the
inventory is no longer parsable by standard yaml parsers without
teaching them the !unsafe tag.
There is a similar simple possibility that doesn't rely on this tag by
base64 encoding the commit message. Ansible has filters for decoding
this so it is still quite easy to deal with base64 encoded vars in
ansible via '{{ zuul.message | b64decode }}'.
Change-Id: I9628e2770dda120b269612e28bb6217036942b8e
Diffstat (limited to 'releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml')
-rw-r--r-- | releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml b/releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml new file mode 100644 index 000000000..7f9b08533 --- /dev/null +++ b/releasenotes/notes/zuul-message-a36f1a6adc7da31c.yaml @@ -0,0 +1,8 @@ +--- +upgrade: + - | + Zuul recently added the job variable :var:`zuul.message`. This can contain + jinja tags which can cause problems accessing the zuul variable in the job. + Because of this the message is now base64 encoded and any job evaluating + this variable needs to be changed from ``{{ zuul.message }}`` to + ``{{ zuul.message | b64decode }}``. |