Vote #81910
完了redmine computed custom field
0%
journals
--------------------------------------------------------------------------------
The "plugin":https://github.com/dpalic/redmine_plugin_computed_custom_field (and its various forks) rely on administrators entering raw Ruby code which is then evaluated. This effectively results in the plugin being an unmitigated remote-code-execution vulnerability which goes against the security guarantees of Redmine.
As such, this plugin will never be part of Redmine and I would strongly recommend to not use it anywhere because of the incredible security risks it brings.
--------------------------------------------------------------------------------
related_issues
relates,New,1712,add custom fields that are calculations of other fields