Jenkins 2023 Recap

Contributed by: Wadeck Follonier The Jenkins Security team has multiple missions, with the most visible to users being the publication of advisories. In 2023, the team published 17 advisories: 4 included Jenkins core, and 13 were solely about plugins. In total, 211 vulnerabilities were announced. In terms of reporting trends, we have seen an increase Read more about Jenkins 2023 Recap[…]

2024 Jenkins Contributor Summit – Update

The Jenkins Contributor Summit, being held in Brussels on February 2nd, is now quickly approaching. We are looking forward to meeting you. If you plan to join us and didn’t let us know yet, don’t forget to register by dropping us a note. The list of registered attendees can be found in this document: Contributor Read more about 2024 Jenkins Contributor Summit – Update[…]

Jenkins November 2023 Newsletter

Key Takeaways Basil Crow joins the Jenkins Governance Board. A Jenkins Contributor Summit will be held prior to FOSDEM. The Contributor Spotlight site is now live. Contributed by: Mark Waite Basil Crow joins the Jenkins governance board in December 2023. He’ll serve for a two-year term. Thanks to Basil for his willingness to serve. More Read more about Jenkins November 2023 Newsletter[…]

[Google Summer of Code 2024] A Call for Mentors

We are happy to announce that Jenkins is preparing to participate in its eighth (8th) year in Google Summer of Code (GSoC). What is Google Summer of Code? Google Summer of Code (GSoC) is a global, online mentoring program focused on introducing new contributors to open-source software development. GSoC contributors work on a 10-22 weeks-long Read more about [Google Summer of Code 2024] A Call for Mentors[…]

Introducing the Jenkins Contributor Spotlight

The Jenkins project has evolved constantly over the years, thanks to the tireless efforts of the Jenkins community. There are numerous contributors that work behind the scenes to ensure that Jenkins is functioning and staying on the cutting edge, in addition to being voices within the community and advocating for Jenkins. It is with this Read more about Introducing the Jenkins Contributor Spotlight[…]

Jenkins Contributor Summit in Brussels

We are happy to announce that we will hold a Jenkins Contributor Summit in Brussels prior to FOSDEM. FOSDEM is a free event for software developers to meet, share ideas, and collaborate. Every year, thousands of developers of free and open-source software from all over the world gather at the event in Brussels. For the Read more about Jenkins Contributor Summit in Brussels[…]

Jenkins October 2023 Newsletter

Key Takeaways JDK21 is available on the infrastructure and in official Docker images too. 💥Breaking change: set Java 17 as default for LTS. Prototype has been removed as of weekly 2.426 Contributed by: Wadeck Follonier Core security advisory published on October 18 https://jenkins.io/security/advisory/2023-10-18/ Includes an essential Jetty update that provided multiple fixes. Plugin security advisory Read more about Jenkins October 2023 Newsletter[…]

Jenkins September 2023 Newsletter

Key Takeaways JDK21 is around the corner Contributed by: Wadeck Follonier A plugin security advisory was published on September 6. Security Advisory 2023-09-06 This included multiple high score vulnerabilities in various plugins. A core security advisory was published on September 20. Security Advisory 2023-09-20 Multiple vulnerabilities were corrected in core. This advisory also included fixes Read more about Jenkins September 2023 Newsletter[…]

Jenkins August 2023 Newsletter

Key Takeaways Jenkins project reports growth of 79% in Jenkins Pipeline, used to propel software delivery. Contributed by: Wadeck Follonier Andrea Chiera completed his 3 months internship within the Security team, auditing 100 plugins and finding 20+ vulnerabilities. Summer Internship in Jenkins security Thank you very much for your involvement and also to the team Read more about Jenkins August 2023 Newsletter[…]