Jenkins Code Dx Plugin 3.1.0 and earlier does not mask Code Dx server API keys displayed on the configuration form, increasing the potential for attackers to observe and capture them.Referenceshttps://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3146
