GitRoot

 1---
 2id: "9c67"
 3priority: 100
 4sprint: ""
 5status: close
 6---
 7
 8# Security breach in right to write
 9
10The right to write is good to check that a plugin don't make dangerous write. But a malicious user can change that in its branch and write...
11
12A possible solution is to mount the pluginRun from defaultBranch, but complexe scenarios where user want to try something in branch will be not possible.
13
14Maybe check that the push user has the right to do what it try to do?
15
16---
17
18After too long debug it's not possible to hack by modifying conf. We use always `defaultBranch` plugins conf.
19
20I close this issue, but one day, user will want to try some conf in other conf before merge!