Branch: refs/heads/master Home: https://github.com/jenkinsci/pollscm-plugin Commit: 955a4daad9a766dc48097451dc128267a28c16ef https://github.com/jenkinsci/pollscm-plugin/commit/955a4daad9a766dc48097451dc128267a28c16ef Author: Mark Waite <mark.earl.wa...@gmail.com> Date: 2024-04-19 (Fri, 19 Apr 2024)
Changed paths: M pom.xml Log Message: ----------- Require Jenkins 2.426.3 or newer (#30) As of 19 Apr 2024, 63% of the installations of the most recent release (1.5 - released 9 months ago) are using Jenkins 2.426.3 or newer. Jenkins 2.426.3 is the first version with the fix for https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314, the arbitrary file read vulnerability through the CLI can lead to RCE. It is a very good choice as a minimum Jenkins version. Jenkins 2.426.3 is one of the versions suggested by https://www.jenkins.io/doc/developer/plugin-development/choosing-jenkins-baseline/ Also removes a workaround for spotbugs version that is no longer required. To unsubscribe from these emails, change your notification settings at https://github.com/jenkinsci/pollscm-plugin/settings/notifications -- You received this message because you are subscribed to the Google Groups "Jenkins Commits" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-commits+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-commits/jenkinsci/pollscm-plugin/push/refs/heads/master/420177-955a4d%40github.com.