[JENKINS-56674] Masking of environment variables passed to docker exec

[jglick]

JENKINS-56674 Subsumes #166 by @vkravets.

I consider this a security hardening. Suppose you have some plugin which uses Launcher, calls env on a sensitive variable, and does not use .quiet(true). Normally it will look like this in the log:

$ command with args

If you wrapped in withDockerContainer before this fix:

$ docker exec --env VAR=value abc123def456 command with args

and after:

$ docker exec --env ******** abc123def456 command with args

Or for old versions of Docker,

$ docker exec abc123def456 env VAR=value command with args

vs.

$ docker exec abc123def456 env ******** command with args

[Wadeck]

Not tested deeply but nothing seems wrong.

🐝

[vkravets]

Great, I'm glad that my findings really helps make this plugin better )
Thanks for merge, as I've understand it already released in the 3.40 version?

[jglick]

It is not currently released.

[Dmitry1987]

When we will be able to install this update and which version it is planned to be released in?
Just realized that all my new pipelines are not secure if anything secret will appear in any environment variable during the execution... Super important fix @jglick thank you!

[jglick]

@Dmitry1987 as you can see in JIRA, it has been released as 1.18.