b470e57cfc
[maven-release-plugin] prepare for next development iteration
2025-01-08 13:58:33 +00:00
ff61e3756a
[maven-release-plugin] prepare release jenkins-2.479.3
2025-01-08 13:58:14 +00:00
95bd20bc08
Backporting for 2.479.3 LTS (part 3) ( #10121 )
...
https://github.com/jenkinsci/jenkins/pull/10043#issuecomment-2573780657
### Testing done
`mvn clean verify -Dtest=hudson.AboutJenkinsTest`
### Proposed changelog entries
- human-readable text
### Proposed upgrade guidelines
N/A
2025-01-06 14:48:47 -07:00
f11f8635ec
[JENKINS-75003] Zip-based tool installer configuration incorrectly rejects non-HTTP(S) URLs (regression in 2.379)
...
(cherry picked from commit 34aba67577
2025-01-06 11:40:19 -08:00
8568bfc6e2
[JENKINS-73942] Downloading tgz artifacts in Firefox is broken
...
(cherry picked from commit 171097618b
2025-01-06 11:39:07 -08:00
ccad3bb0e9
Merge pull request #10103 from MarkEWaite/backporting-2.479.3-2
...
Backporting for 2.479.3 LTS - part 2
2025-01-04 04:33:53 +08:00
f9556cd479
[JENKINS-75077] Update mina-sshd-api.version to v2.14.0-138.v6341ee58e1df
...
https://github.com/jenkinsci/jenkins/pull/10096 is the pull request to
the master branch that has been merged for inclusion in the 7 Jan 2025
release of Jenkins 2.492.
The Apache MINA core library has reported CVE-2024-52046
https://github.com/advisories/GHSA-76h9-2vwh-w278 , an issue for MINA
users that use `ioBuffer.getObject()`. Jenkins is not affected by
the issue, but software composition analysis tools will report it as
a vulnerability and we'll spend time explaining that Jenkins is not
vulnerable.
Let's backport the change to the stable-2.479 line so that it can be
part of Jenkins 2.479.3
This is an exception to the policy that we only backport to an LTS after
a change has been merged to the Jenkins weekly release. I think this
exception should be approved so that we reduce the amount of time that the
Jenkins security team must spend explaining that Jenkins is not vulnerable
to this issue. It is simpler to include the updated library plugin than
to spend time explaining why this is not an issue.
(cherry picked from commit efae3ca455
2024-12-30 07:46:37 -07:00
4805b85d70
Merge pull request #10043 from krisstern/chore/stable-2.479/backporting-2.479.3-1
...
Backporting for 2.479.3 LTS
2024-12-12 10:32:01 +08:00
faef7d7f8e
[JENKINS-73908] Do not show button to upgrade to SystemRead users ( #9981 )
...
Co-authored-by: Daniel Beck <daniel-beck@users.noreply.github.com>
(cherry picked from commit 530b0abd38
2024-12-11 00:11:13 +08:00
2e90e86673
[JENKINS-73907] Fix double-escaped tooltips in "Help for feature" ( #10000 )
...
Co-authored-by: Daniel Beck <daniel-beck@users.noreply.github.com>
(cherry picked from commit f91ebb4238
2024-12-11 00:10:54 +08:00
dac61d8a27
[JENKINS-73487] Fix Stapler exception with multiple security warnings ( #9983 )
...
Co-authored-by: Daniel Beck <daniel-beck@users.noreply.github.com>
(cherry picked from commit 5a574c9fd6
2024-12-11 00:10:12 +08:00
0c9536f6ac
[maven-release-plugin] prepare for next development iteration
2024-11-25 15:21:54 +00:00
27c55e18ef
[maven-release-plugin] prepare release jenkins-2.479.2
2024-11-25 15:21:18 +00:00
ae09ad9883
[SECURITY-3463]
2024-11-17 03:39:22 +00:00
367220bb1f
Merge pull request #9979 from krisstern/chore/stable-2.479/backporting-2.479.2-2
...
Backporting 2.479.2 LTS - Part 2
2024-11-15 08:20:35 -08:00
42c9daa6a9
Update dependency org.jenkins-ci.plugins:script-security to v1369 ( #9970 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit 4b2ab447de
2024-11-15 22:05:55 +08:00
077613da08
Merge pull request #9956 from krisstern/chore/stable-2.479/backporting-2.479.2-1
...
Backporting 2.479.2 LTS
2024-11-10 08:33:10 -08:00
cbebc8db7b
Update dependency com.thoughtworks.xstream:xstream to v1.4.21 [SECURITY] ( #9954 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit 0bc21b9425
2024-11-10 05:13:28 +08:00
cd4cf63b9e
[JENKINS-74795] Job created via REST API attaches to default view ( #9947 )
...
Co-authored-by: Mark Waite <mark.earl.waite@gmail.com>
(cherry picked from commit 8298257227
2024-11-09 17:28:54 +08:00
5c2bcc5a59
[JENKINS-74814] `java.lang.UnsupportedOperationException`: This stack walker does not have `RETAIN_CLASS_REFERENCE` access ( #9945 )
...
(cherry picked from commit ac63b7f156
2024-11-09 17:28:22 +08:00
0f951d2e7f
[maven-release-plugin] prepare for next development iteration
2024-10-30 13:03:35 +00:00
e94816cc9f
[maven-release-plugin] prepare release jenkins-2.479.1
2024-10-30 13:02:35 +00:00
ec74decaf6
Merge pull request #9907 from basil/more-backporting
...
Backporting for 2.479.1 (part 4)
2024-10-23 11:59:47 -07:00
4d2167190f
Allow for null to be passed to `doSafeRestart` ( #9882 )
...
(cherry picked from commit 6c5cdfa96c
2024-10-23 09:26:24 -07:00
ec28f0e2b2
Update dependency org.springframework:spring-framework-bom to v6.1.14 ( #9884 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit 8612f16534
2024-10-23 09:26:13 -07:00
db5136eb22
Update dependency org.springframework.security:spring-security-bom to v6.3.4 ( #9894 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit 8ee91ce984
2024-10-23 09:26:03 -07:00
3f43ddf0c8
Merge pull request #9875 from basil/running
...
Backporting for 2.479.1 (part 3)
2024-10-15 16:53:15 -07:00
0e831a32aa
Stop build in `DeleteBuildsCommandTest.deleteBuildsShouldFailIfTheBuildIsRunning` so test can be cleaned up on Windows consistently ( #9876 )
...
(cherry picked from commit 5019eb900c
2024-10-15 14:37:14 -07:00
d383906fbe
[JENKINS-73835] Do not allow builds to be deleted while they are still running and ensure build discarders run after builds are fully complete ( #9810 )
...
* [JENKINS-73835] Do not allow builds to be deleted while they are still running
* [JENKINS-73835] Avoid redundant calls to Job.logRotate when builds complete and always call Job.logRotate after build finalization
* [JENKINS-73835] Add issue reference to RunTest.buildsMayNotBeDeletedWhileRunning
* [JENKINS-73835] Adjust DeleteBuildsCommandTest.deleteBuildsShouldSuccessEvenTheBuildIsRunning to match new behavior
* [JENKINS-73835] Run/delete.jelly should check Run.isLogUpdated, not Run.isBuilding
(cherry picked from commit d34b17ee4b
2024-10-15 13:22:17 -07:00
a347514e82
Merge pull request #9858 from MarkEWaite/stable-2.479-backport-2
...
Backporting for 2.479.1 (part 2)
2024-10-12 10:25:09 -07:00
c2ec435160
[JENKINS-73824] Wait for Pipeline builds to complete before allowing their jobs to be deleted ( #9790 )
...
* Wait for Pipelines to complete before allowing their jobs to be deleted
* Create mock Job/Run classes that use AsynchronousExecution to be able to add a regression test in core
* [JENKINS-73824] Do not repeatedly interrupt executables in ItemDeletion.cancelBuildsInProgress
* [JENKINS-73824] Delete ItemDeletionTest based on https://github.com/jenkinsci/jenkins/pull/9790#discussion_r1777727008
(cherry picked from commit 4d7b993c5b
2024-10-12 06:56:43 -06:00
6aee271284
[JENKINS-73917] Update dependency io.jenkins.plugins:asm-api to v9.7.1-95.v9f552033802a_ ( #9834 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit a582fc10ac
2024-10-12 06:56:07 -06:00
ae964df953
[JENKINS-73917] Update dependency org.ow2.asm:asm to v9.7.1 ( #9831 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
(cherry picked from commit 09fecfaff9
2024-10-12 06:55:37 -06:00
7849dfb89d
Merge pull request #9830 from MarkEWaite/stable-2.479-backport-1
...
Backporting for 2.479.1
2024-10-06 15:06:30 -07:00
ab2349a00c
[JENKINS-73867] Override the outdated managed dependency on `asm` in `guice-parent` ( #9827 )
...
Override the outdated managed dependency on `asm` in `guice-parent`
(cherry picked from commit 0066184e68
2024-10-05 13:39:35 -06:00
2e445fdb03
[JENKINS-73838] Compatibility for `Jenkins#doSafeRestart(StaplerRequest, String)` ( #9797 )
...
(cherry picked from commit 77c3d7ac84
2024-10-05 13:38:35 -06:00
e454f9aee0
[JENKINS-73801] Nested Views plugin overrides `View#doConfigDotXml(StaplerRequest)` ( #9764 )
...
(cherry picked from commit 1c2b84cb76
2024-10-05 13:37:10 -06:00
6b96db2cc1
[JENKINS-73760] Updates fail due to invalid JSON from HTTP Update Center ( #9760 )
...
(cherry picked from commit 47a212aa79
2024-10-05 13:36:44 -06:00
8f7e48975e
[JENKINS-73437] Fix build history no automatic line wrapping ( #9693 )
...
* Fix build history no automatic line wrapping
* Update _job.scss
(cherry picked from commit 9036086e29
2024-10-05 13:35:46 -06:00
9b2f6c4162
Towards 2.479.1
2024-10-03 18:48:18 -06:00
0db93161d6
[maven-release-plugin] prepare for next development iteration
2024-09-27 11:18:06 +00:00
969d9feab9
[maven-release-plugin] prepare release jenkins-2.479
2024-09-27 11:17:44 +00:00
dfd7a9c48b
[SECURITY-3373]
2024-09-25 07:59:32 +00:00
d0c0d07bc4
[SECURITY-3451]
2024-09-25 07:59:26 +00:00
cd242d9ed4
[SECURITY-3448]
2024-09-25 07:59:21 +00:00
435bb79891
[maven-release-plugin] prepare for next development iteration
2024-09-24 13:48:54 +00:00
7df633dcf9
[maven-release-plugin] prepare release jenkins-2.478
2024-09-24 13:48:23 +00:00
ca6e140331
Update dependency sass to v1.79.3 ( #9780 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-24 07:12:59 +01:00
d6b014fa53
Update eslint monorepo to v9.11.0 ( #9777 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-23 20:25:12 +01:00
764637f932
Update dependency sass-loader to v16.0.2 ( #9776 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-09-23 09:12:06 -07:00
Jenkins Release Bot
Mark Waite
Basil Crow
Kris Stern
renovate[bot]
Daniel Beck
Yen Cheng Lin
Daniel Beck
Devin Nusbaum
Kevin-CB