The following Jenkins plugin updates contain fixes for security vulnerabilities:
* AppSpider Plugin 1.0.17
* Bitbucket Branch Source Plugin 871.v28d74e8b_4226
* Delphix Plugin 3.0.2 and 3.1.1
* HTML Publisher Plugin 1.32.1
* MQ Notifier Plugin 1.4.1
* OWASP Dependency-Check Plugin 5.4.6
* Trilead
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, March 6. The highest severity is 'High' and affects plugins
installed on between 25% and 75% of known instances. The most popular included
plugins are installed on more than 75% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Analysis Model API Plugin 11.13.0
* Nexus Platform Plugin 3.18.1-01
* Scriptler Plugin 344.v5a_ddb_5f9e685
Additionally, we announce unresolved security issues in the following plugins:
* Deployment Dashboard
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, December 13. The highest severity is 'High' and affects plugins
installed on between 1% and 3% of known instances. The most popular
included plugins are installed on between 3% and 10% of known instances and
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Google Compute Engine Plugin 4.551.v5a_4dc98f6962
* Jira Plugin 3.12
* MATLAB Plugin 2.11.1
* NeuVector Vulnerability Scanner Plugin 2.2
Please see the advisory for more information:
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, November 29. The highest severity is 'High' and affects plugins
installed on less than 1% of known instances. The most popular included
plugins are installed on between 10% and 25% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* CloudBees CD Plugin 1.1.33
* GitHub Plugin 1.37.3.1
* lambdatest-automation Plugin 1.20.10 and 1.21.0
* Warnings Plugin 10.5.1
Additionally, we announce unresolved security issues in the following plugins:
*
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, October 25. The highest severity is 'High'. The most popular
included plugin is installed on more than 75% of known instances. The
advisory includes issues that will be published without a fix as outlined
at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure AD Plugin 397.v907382dd9b_98 and 378.380.v545b_1154b_3fb_
* Bitbucket Push and Pull Request Plugin 2.8.4
* Google Login Plugin 1.8
* Job Configuration History Plugin 1229.v3039470161a_d
* Pipeline Maven
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, September 6. The highest severity is 'High'. The most popular
included plugin is installed on between 10% and 25% of known instances. The
advisory includes issues that will be published without a fix as
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Blue Ocean Plugin 1.27.5.1
* Config File Provider Plugin 953.v0432a_802e4d2
* Delphix Plugin 3.0.3
* Flaky Test Handler Plugin 1.2.3
* Folders Plugin 6.848.ve3b_fd7839a_81
* Fortify Plugin 22.2.39
* NodeJS Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, August 16. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances. The advisory includes
issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Directory Plugin 2.30.1
* Datadog Plugin 5.4.2
* External Monitor Job Type Plugin 207.v98a_a_37a_85525
* mabl Plugin 0.0.47
* OpenShift Login Plugin 1.1.0.230.v5d7030b_f5432
* Oracle Cloud Infrastructure
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, July 12. The highest severity is 'High'. The most popular included
plugin is installed on between 25% and 75% of known instances. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Ansible Plugin 205.v4cb_c48657c21
* AppSpider Plugin 1.0.16
* Azure VM Agents Plugin 853.v4a_1a_dd947520
* CAS Plugin 1.6.3
* Code Dx Plugin 4.0.0
* Email Extension Plugin 2.96.1
* File Parameter Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, May 16. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances. The advisory includes
issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure Key Vault Plugin 188.vf46b_7fa_846a_1
* Kubernetes Plugin 3910.ve59cec5e33ea_
Additionally, we announce unresolved security issues in the following plugins:
* Assembla merge request builder Plugin
* Consul
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, April 12. The highest severity is 'High' and affects plugins
installed on less than 1% of known instances. The most popular included plugins
are installed on between 10% and 25% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* JaCoCo Plugin 3.3.2.1
* OctoPerf Load Testing Plugin 4.5.1, 4.5.2, and 4.5.3
* Pipeline Aggregator View Plugin 1.14
* Role-based Authorization Strategy Plugin 587.588.v850a_20a_30162
Additionally, we announce
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, March 21. The highest severity is 'High' and affects plugins installed
on between 3% and 10% of known instances. The most popular included plugins are
installed on between 25% and 75% of known instances and
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure Credentials Plugin 254.v64da_8176c83a
* Email Extension Plugin 2.93.1
* JUnit Plugin 1166.1168.vd6b_8042a_06de
* Pipeline: Build Step Plugin 2.18.1
* Synopsys Coverity Plugin 3.0.3
Please see the advisory
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, February 15. The highest severity is 'High'. The most popular
included plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure AD Plugin 306.va_7083923fd50
* Bitbucket OAuth Plugin 0.13
* Gerrit Trigger Plugin 2.38.1
* Kubernetes Credentials Provider Plugin 1.209.v862c6e5fb_1ef
* OpenId Connect Authentication Plugin 2.5
* Orka by
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, January 24. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances. The advisory includes
issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Checkmarx Plugin 2022.4.3
* Custom Build Properties Plugin 2.82.v16d5b_d3590c7
* Gitea Plugin 1.4.5
* Google Login Plugin 1.7
* Plot Plugin 2.1.12
* Spring Config Plugin 2.0.1
Additionally, we announce unresolved
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, December 7. The highest severity is 'High'. The most popular
included plugin is installed on between 1% and 3% of known instances. The
advisory includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* CloudBees Docker Hub/Registry Notification Plugin 2.6.2.1
* JUnit Plugin 1160.vf1f01a_a_ea_b_7f
* Naginator Plugin 1.18.2
* NS-ND Integration Performance Publisher Plugin 4.8.0.146
* Pipeline Utility Steps Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, November 15. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances. The advisory includes
issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Compuware Source Code Download for Endevor, PDS, and ISPW Plugin 2.0.13
* Compuware Topaz Utilities Plugin 1.0.9
* Compuware Xpediter Code Coverage Plugin 1.0.8
* Contrast Continuous Application Security Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, October 19. The highest severity is 'High'. The most popular
included plugin is installed on more than 75% of known instances. The advisory
includes issues that will be published without a fix as outlined at
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, September 21. The highest severity is 'High'. The most popular
included plugin is installed on less than 1% of known instances. The advisory
includes issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security
vulnerabilities:
* CollabNet Plugins Plugin 2.0.9
* Git Plugin 4.11.5
* Job Configuration History Plugin 1166.vc9f255f45b_8a
Additionally, we announce unresolved security issues in the following
plugins:
* Kubernetes Continuous
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, August 23. The highest severity is 'High' and affects plugins
installed on between 10% and 25% of known instances. The most popular included
plugins are installed on more than 75% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Compuware ISPW Operations Plugin 1.0.9
* Compuware Source Code Download for Endevor, PDS, and ISPW Plugin 2.0.13
* Compuware Topaz Utilities Plugin 1.0.9
* Compuware Xpediter Code Coverage Plugin 1.0.8
* Compuware
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, July 27. The highest severity is 'High' and affects plugins
installed on between 1% and 3% of known instances. The most popular included
plugins are installed on more than 75% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* GitLab Plugin 1.5.35
* requests-plugin Plugin 2.2.17
* TestNG Results Plugin 555.va0d5f66521e3
* XebiaLabs XL Release Plugin 22.0.1
Additionally, we announce unresolved security issues in the following plugins:
*
The Jenkins project will publish a security advisory for Jenkins plugins on
Thursday, June 30. The highest severity is 'High'. The most popular included
plugin is installed on between 10% and 25% of known instances. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Application Detector Plugin 1.0.9
* Blue Ocean Plugin 1.25.4
* Git Plugin 4.11.2
* GitLab Plugin 1.5.32
* Mercurial Plugin 2.16.1
* Multiselect parameter Plugin 1.4
* Pipeline SCM API for Blue Ocean Plugin 1.25.4
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, May 17. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
update for
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Credentials Plugin 1112.vc87b_7a_3597f6, 1087.1089.v2f1b_9a_b_040e4,
1074.1076.v39c30cecb_0e2, and 2.6.1.1
* CVS Plugin 2.19.1
* Gerrit Trigger Plugin 2.35.3
* Git Parameter Plugin 0.9.16
* Google Compute Engine
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, April 12. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
update
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Bitbucket Server Integration Plugin 3.2.0
* Continuous Integration with Toad Edge Plugin 2.4
* Flaky Test Handler Plugin 1.2.2
* instant-messaging Plugin 1.42
* JiraTestResultReporter Plugin 166.v0cc6208295b5
*
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, March 29. The highest severity is 'High'. The most popular included
plugin is installed on between 1% and 3% of known instances. The advisory
includes issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* CloudBees AWS Credentials Plugin 191.vcb_f183ce58b_9
* Dashboard View Plugin 2.18.1
* Favorite Plugin 2.4.1
* Folder-based Authorization Strategy Plugin 1.4
* Parameterized Trigger Plugin 2.43.1
* Semantic
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, March 15. The highest severity is 'High'. The most popular included
plugin is installed on between 25% and 75% of known instances. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security
vulnerabilities:
* Agent Server Parameter Plugin 1.1
* autonomiq Plugin 1.16
* Conjur Secrets Plugin 1.0.12
* Custom Checkbox Parameter Plugin 1.2
* Fortify Plugin 20.2.35
* Generic Webhook Trigger Plugin 1.82
* HashiCorp Vault
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, February 15. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances. The advisory includes
issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Choices Plugin 2.5.7
* Scriptler Plugin 3.4
Additionally, we announce unresolved security issues in the following plugins:
* OWASP Dependency-Check Plugin
* Performance Plugin
* pom2config Plugin
* Squash
The Jenkins project will publish a security advisory for Jenkins plugins on
Friday, November 12. The highest severity is 'High'. The most popular included
plugin is installed on between 3% and 10% of known instances. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Azure AD Plugin 180.v8b1e80e6f242
* Code Coverage API Plugin 1.4.1
* Nested View Plugin 1.21
* Nomad Plugin 0.7.5
* SAML Plugin 2.0.8
Please see the advisory for more information:
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, August 31. The highest severity is 'High'. The most popular included
plugin is installed on between 3% and 10% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Generic Webhook Trigger Plugin 1.74
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-06-18/
--
You received this message because you are subscribed to the Google Groups
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Scriptler Plugin 3.2 and 3.3
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-06-16/
--
You received this message because you are subscribed to the Google Groups
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Kiuwan Plugin 1.6.1
* Kubernetes CLI Plugin 1.10.1
* XebiaLabs XL Deploy Plugin 10.0.2
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-06-10/
--
You received this
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Filesystem Trigger Plugin 0.41
* Markdown Formatter Plugin 0.2.0
* Nuget Plugin 1.1
* URLTrigger Plugin 0.49
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-05-25/
--
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Credentials Plugin 2.3.19
* Dashboard View Plugin 2.16
* P4 Plugin 1.11.5
* S3 publisher Plugin 0.11.7
* Xcode integration Plugin 2.0.15
* Xray - Test Management for Jira Plugin 2.4.1
Please see the advisory for
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, May 11. The highest severity is 'High'. The most popular included
plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
update for
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* CloudBees CD Plugin 1.1.22
* Config File Provider Plugin 3.7.1
* Templating Engine Plugin 2.2
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-04-21/
--
You received
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, April 21. The highest severity is 'High'. The most popular included
plugin is installed on between 25% and 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Build With Parameters Plugin 1.5.1
* Cloud Statistics Plugin 0.27
* Extra Columns Plugin 1.23
* Jabber (XMPP) notifier and control Plugin 1.42
* OWASP Dependency-Track Plugin 3.1.1
* REST List Parameter Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, March 30. The highest severity is 'High'. The most popular included
plugin is installed on between 3% and 10% of known instances. The advisory
includes issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* CloudBees AWS Credentials Plugin 1.28.1
* Libvirt Agents Plugin 1.9.1
* Matrix Authorization Strategy Plugin 2.6.6
* Role-based Authorization Strategy Plugin 3.1.1
* Warnings Next Generation Plugin 8.5.0
Please
The Jenkins project will publish a security advisory for Jenkins plugins on
Thursday, March 18. The highest severity is 'Medium'. The most popular included
plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
update
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Choices Plugin 2.5.3
* Artifact Repository Parameter Plugin 1.0.1
* Claim Plugin 2.18.2
* Configuration Slicing Plugin 1.52
* Repository Connector Plugin 2.0.3
* Support Core Plugin 2.72.1
Please see the
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, February 24. The highest severity is 'High'. The most popular
included plugin is installed on between 3% and 10% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Directory Plugin 2.20
* Ansible Plugin 1.1
* AppSpider Plugin 1.0.13
* AWS Global Configuration Plugin 1.6
* Azure Key Vault Plugin 2.1
* Kubernetes Plugin 1.27.4
* Mercurial Plugin 2.12
* SQLPlus Script
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, November 4. The highest severity is 'Critical'. The most popular
included plugin is installed on between 10% and 25% of known instances. The
advisory includes issues that will be published without a fix as
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Choices Plugin 2.5
* Audit Trail Plugin 3.7
* couchdb-statistics Plugin 0.4
* Role-based Authorization Strategy Plugin 3.1
Additionally, we announce unresolved security issues in the following plugins:
*
The Jenkins project will publish a security advisory for Jenkins plugins on
Thursday, October 8. The highest severity is 'High'. The most popular included
plugin is installed on between 25% and 75% of known instances. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Implied Labels Plugin 0.7
* Liquibase Runner Plugin 1.4.8
* Lockable Resources Plugin 2.9
* Script Security Plugin 1.75
* Warnings Plugin 5.0.2
Please see the advisory for more information:
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, September 23. The highest severity is 'High'. The most popular
included plugin is installed on more than 75% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Blue Ocean Plugin 1.23.3
* computer-queue-plugin Plugin 1.6
* Email Extension Plugin 2.76
* Health Advisor by CloudBees Plugin 3.2.1
* Mailer Plugin 1.32.1
* Perfecto Plugin 1.18
* Pipeline Maven Integration Plugin
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, September 16. The highest severity is 'High' and affects plugins
installed on between 3% and 10% of known instances. The most popular included
plugins are installed on more than 75% of known instances and
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Build Failure Analyzer Plugin 1.27.1
* Cadence vManager Plugin 3.0.5
* database Plugin 1.7
* Git Parameter Plugin 0.9.13
* Parameterized Remote Trigger Plugin 3.1.4
* SoapUI Pro Functional Testing Plugin 1.4
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, September 1. The highest severity is 'High'. The most popular included
plugin is installed on between 10% and 25% of known instances. The advisory
includes issues that will be published without a fix as
The Jenkins project will publish a security advisory for Jenkins plugins on
Thursday, July 2. The highest severity is 'High' and affects plugins installed
on less than 1% of known instances. The most popular included plugins are
installed on between 1% and 3% of known instances and have
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Compact Columns Plugin 1.12
* ECharts API Plugin 4.7.0-4
* Script Security Plugin 1.73
* Self-Organizing Swarm Plug-in Modules Plugin 3.21
Additionally, we announce unresolved security issues in the following
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, June 3. The highest severity is 'High' and affects plugins installed
on between 1% and 3% of known instances. The most popular included plugins are
installed on more than 75% of known instances and have
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, May 6. The highest severity is 'High' and affects plugins installed
on less than 1% of known instances. The most popular included plugins are
installed on more than 75% of known instances and have 'Medium'
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* AWS SAM Plugin 1.2.3
* Copr Plugin 0.6.1
* Parasoft Findings Plugin 10.4.4
* Yaml Axis Plugin 0.2.1
Please see the advisory for more information:
https://jenkins.io/security/advisory/2020-04-16/
--
You received
The Jenkins project will publish a security advisory for Jenkins plugins on
Thursday, April 16. The highest severity is 'High'. The most popular included
plugin is installed on less than 1% of known instances.
This affects only Jenkins plugins, there will be no corresponding security
update
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* AWSEB Deployment Plugin 0.3.20
* Code Coverage API Plugin 1.1.5
* FitNesse Plugin 1.33
* Gatling Plugin 1.3.0
* useMango Runner Plugin 1.5
Please see the advisory for more information:
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, April 7. The highest severity is 'High'. The most popular included
plugin is installed on between 3% and 10% of known instances. The advisory may
include issues that will be published without a fix as outlined
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, February 12. The highest severity is 'High'. The most popular
included plugin has more than 200,000 reported installations. The advisory
includes issues that will be published without a fix as outlined at
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Amazon EC2 Plugin 1.48
* Health Advisor by CloudBees Plugin 3.0.1
* Redgate SQL Change Automation Plugin 2.0.5
* Robot Framework Plugin 2.0.1
Additionally, we announce unresolved security issues in the following
The Jenkins project will publish a security advisory for Jenkins plugins on
Wednesday, January 15. The highest severity is 'High' and affects plugins
with between 5,000 and 10,000 reported installations. The most popular
included plugins have between 10,000 and 25,000 reported installations and
The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Build Failure Analyzer Plugin 1.24.2
* Gerrit Trigger Plugin 2.30.2
* Maven Release Plugin 0.16.2
* Pipeline Aggregator View Plugin 1.9
* Redgate SQL Change Automation Plugin 2.0.4
* Rundeck Plugin 3.6.6
* Spira
The Jenkins project will publish a security advisory for Jenkins plugins on
Tuesday, December 17. The highest severity is 'High'. The most popular included
plugin has between 10,000 and 25,000 reported installations. The advisory
includes issues that will be published without a fix as outlined
The following Jenkins plugin updates have been released to fix security
vulnerabilities:
* Aqua Security Serverless Scanner Plugin 1.0.5
* Beaker builder Plugin 1.10
* Build Environment Plugin 1.7
* Dashboard View Plugin 2.12
* Git client Plugin 2.8.5
* Script Security Plugin 1.63
Please see
The following Jenkins plugin updates have been released to fix security
vulnerabilities:
* Amazon EC2 Plugin 1.44
* Configuration as Code Plugin 1.25
* Google Kubernetes Engine Plugin 0.6.3
* Maven Integration Plugin 3.4
* Maven Release Plug-in Plugin 0.15.0
* Pipeline: Shared Groovy Libraries
The following Jenkins plugin updates have been released to fix security
vulnerabilities:
* ElectricFlow Plugin 1.1.7
* JX Resources Plugin 1.0.37
* Token Macro Plugin 2.8
Please see the advisory for more information:
https://jenkins.io/security/advisory/2019-06-11/
--
You received this
The following Jenkins plugin updates fix security vulnerabilities:
* Azure PublisherSettings Credentials Plugin 1.5
* GitLab Plugin 1.5.12
* jira-ext Plugin 0.9
* ontrack Jenkins Plugin 3.4.1
We also announce unresolved security issues in the following plugins:
* XebiaLabs XL Deploy Plugin
The following Jenkins plugin updates have recently been released to fix
security vulnerabilities:
* Netsparker Cloud Scan Plugin 1.1.6
* Youtrack Plugin 0.7.2
We also announce unresolved security issues in the following plugins:
* Amazon SNS Build Notifier Plugin
* Aqua Security Scanner
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Script Security Plugin 1.53
* Cloud Foundry Plugin 2.3.2
We recommend that administrators update Script Security Plugin as soon as
possible.
Additionally we announce security fixes in these
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Active Directory Plugin 2.11
* Blue Ocean Plugin 1.10.2
* Config File Provider Plugin 3.5
* Git Plugin 3.9.2
* Groovy Plugin 2.1
* Job Import Plugin 3.1
* Script Security Plugin 1.51
* Token Macro
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Pipeline: Declarative Plugin 1.3.4.1
* Pipeline: Groovy Plugin 2.61.1
* Script Security Plugin 1.50
Please see the advisory for more information:
https://jenkins.io/security/advisory/2019-01-08/
--
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Pipeline: Groovy 2.60
* Script Security 1.48
Please see the advisory for more information:
https://jenkins.io/security/advisory/2018-10-29/
--
You received this message because you are subscribed
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Config File Provider Plugin 3.2
* Crowd 2 Integration Plugin 2.0.1
* Email Extension Template Plugin 1.1
* HipChat Plugin 2.2.1
* JIRA Plugin 3.0.2
* Job Configuration History Plugin 2.18.1
* JUnit
The following Jenkins plugin updates have been released today to fix security
vulnerabilities:
* Google Login 1.3.1
* HTML Publisher 1.16
Additionally, we're announcing security fixes in these previous plugin releases:
* Email Extension 2.62 (released 2018-03-23)
* S3 Publisher Plugin 0.11.0
The following Jenkins plugin updates have been released to fix security
vulnerabilities:
* Android Lint 2.6
* CCM 3.2
* Credentials Binding 1.15
* JUnit 1.24
* Pipeline: Supporting APIs 2.18
Please see the advisory for more information:
https://jenkins.io/security/advisory/2018-02-05/
--
You
1 - 100 of 108 matches
Mail list logo