Currently, the Jenkins-Artifactory plugin (v2.12) provides exclude patterns when "Include Environment Variables" is enabled, to prevent environment variable with names that match any exclude pattern from being published to the build info tab in Artifactory in clear text format! YIKES. Three values are currently auto-populated into this editable exclude patterns field (password,key,secret). But we want these patterns to be fixed and not editable because users can remove them and obtain passwords or secrets for shared build accounts.
Feature request summary:
1. The plugin should enforce a fixed/built-in set of non-editable exclude patterns (password,key,secret)*. T*hese fixed patterns should be case insensitive.
2. The plugin can continue to offer (as it does today) an editable set of exclude patterns that would be appended to the fixed/built-in set.
This is currently an audit issue.