Thycotic DevOps Secrets Vault

The Jenkins project announced an unresolved security vulnerability affecting the current version of this plugin (why?):

Jenkins Plugin Build

The Thycotic DevOps Secrets Vault (DSV) Jenkins Plugin allows you to access and reference your Secrets data available for use in Jenkins builds.

Usage

This plugin add the ability to include Secret data into your build environment.

build-environment

This is allows you to include the Vault Tenant of your DevOps Vault, along with the Secret Path of the secret data you wish to access.

Additionally you will need to include a valid credential provider.

add-credential

You will now have the option to change the kind of credential you wish to add, to that of a DevOps Secrets Vault Client Secret.

After you have added your credentials to the build environment you can use the secret in your build/s.

IMPORTANT: By default, this plugin will add a DSV_ prefix to the environment variables. You should leave the Environment Variable Prefix field blank in the Jenkins UI when consuming your credential.