Hello,
Thanks for your report. I will let the Jenkins security team members to
comment on that. Just for your information, we have an official process for
reporting security vulnerabilities. I highly recommend following this
process. Please see
Thanks to Baptiste for bringing it up explicitly! Many plugins from the
list can be fixed, and there are already pull requests created by Adrien
Lecharpentier and Carroll Chiou. It would be great to help them landed, but
many plugins are effectively abandoned. I highly recommend that the pull
Thank you, Oleg. Thank you for sharing the link to report the
vulnerabilities. Appreciate your help!
On Sunday, May 30, 2021 at 2:46:39 PM UTC-4 o.v.ne...@gmail.com wrote:
> Hello,
>
> Thanks for your report. I will let the Jenkins security team members to
> comment on that. Just for your
After I upgraded Jenkins from 2.250 to 2.275, I noticed that the UI for the
Jobs configuration looks different. The section for Source Code
Management/Build Triggers/Build Environment/build/Post-build actions are
missing at the top of the job configuration page and I see a couple of