Mar 8, 2023 · Custom update site URLs (i.e., not https://updates.jenkins.io/update-center.json ) are configured, and those update sites behave differently.

Jun 14, 2023 · 3.1 defines the appropriate context for credentials lookup. Stored XSS vulnerability in Maven Repository Server Plugin. SECURITY-3156 / CVE-2023 ...

Jul 12, 2023 · mabl Plugin 0.0.47 defines the appropriate context for credentials lookup. CSRF vulnerability and missing permission checks in mabl Plugin allow ...

Nov 29, 2023 · Jira Plugin 3.12 defines the appropriate context for credentials lookup. Incorrect permission checks in Google Compute Engine Plugin. SECURITY- ...

Jul 26, 2023 · Jenkins 2.416, LTS 2.401.3, and LTS 2.414.1 encode URLs of affected hyperlink annotations in build logs. Incorrect control flow in Gradle Plugin ...

May 16, 2023 · Sidebar Link Plugin 2.2.1 and earlier does not restrict the path of files in a method implementing form validation. This allows attackers with ...

Jan 24, 2023 · v862c6e5fb_1ef defines the appropriate context for Kubernetes credentials lookup. Session fixation vulnerability in Microsoft Entra ID ( ...

Jenkins – an open source automation server which enables developers around the world to reliably build, test, and deploy their software.

Mar 21, 2023 · Pipeline Aggregator View Plugin 1.14 obtains the current URL in a way not susceptible to XSS. CSRF vulnerability in OctoPerf Load Testing Plugin ...

Jenkins plugins published by the Jenkins project (listed on plugins.jenkins.io and/or hosted in the jenkinsci GitHub organization). Additional components ...