Bamboo 3.4 : Managing Bamboo Security

As a distributed application, Bamboo's security is important. This page contains links to security-related information in the Bamboo documentation.

Security Advisories

For information on how to report a security vulnerability in Bamboo and our policy on security advisories and patches, please read Bamboo Security Advisories. A full list of security advisories that we have previously issued is also available on that page.

Bamboo Permissions

For information on Bamboo's internal security model, i.e. user management and permissions, please see Managing Users and Permissions.

Bamboo Configuration

The following pages contain information on how to configure Bamboo features that can permit/forbid access to the Bamboo application. Please read each page carefully for further information.

Other Security Resources

Page: Security Patch Policy
Page: How to Report a Security Issue
Page: Security Advisory Publishing Policy
Page: Severity Levels for Security Issues
Page: Managing Users and Permissions
Page: Configuring Tomcat to Use HttpOnly Session ID Cookies
Page: Bamboo Security Advisories
Page: Elastic Bamboo Security
Page: Securing your Remote Agents
Page: Managing Bamboo Security
Page: Securing your repository connection
Page: Configuring a Plan's Permissions