The Jenkins Blog

Kevin Martens

Kevin Martens is part of the CloudBees Documentation team, helping with Jenkins documentation creation and maintenance.

Jenkins Contributor Summit and FOSDEM Recap

The previous in-person Jenkins Contributor Summit took place in 2020, just prior to the lockdowns and precautions that would change the world. Thankfully, on February 2, 2024, just prior to this year’s FOSDEM conference, we were able to gather again, in Brussels, so that we could have an in-person Jenkins Contributor Summit. The return to in-person meant that not only could we...

Kevin Martens February 28, 2024
Jenkins 2023 Recap

Contributed by: Wadeck Follonier The Jenkins Security team has multiple missions, with the most visible to users being the publication of advisories. In 2023, the team published 17 advisories: 4 included Jenkins core, and 13 were solely about plugins. In total, 211 vulnerabilities were announced. In terms of reporting trends, we have seen an increase in people reporting CVEs originating from dependencies. Our position on...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Wadeck Follonier
Kevin Martens
Alyssa Tong January 25, 2024
Jenkins November 2023 Newsletter

Key Takeaways Basil Crow joins the Jenkins Governance Board. A Jenkins Contributor Summit will be held prior to FOSDEM. The Contributor Spotlight site is now live. Contributed by: Mark Waite Basil Crow joins the Jenkins governance board in December 2023. He’ll serve for a two-year term. Thanks to Basil for his willingness to serve. More details of the 2023 governance board and officer changes are available in a...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Kevin Martens
Alyssa Tong December 15, 2023
Introducing the Jenkins Contributor Spotlight

The Jenkins project has evolved constantly over the years, thanks to the tireless efforts of the Jenkins community. There are numerous contributors that work behind the scenes to ensure that Jenkins is functioning and staying on the cutting edge, in addition to being voices within the community and advocating for Jenkins. It is with this sentiment in mind that we want to...

Kevin Martens November 29, 2023
Jenkins October 2023 Newsletter

Key Takeaways JDK21 is available on the infrastructure and in official Docker images too. 💥Breaking change: set Java 17 as default for LTS. Prototype has been removed as of weekly 2.426 Contributed by: Wadeck Follonier Core security advisory published on October 18 https://jenkins.io/security/advisory/2023-10-18/ Includes an essential Jetty update that provided multiple fixes. Plugin security advisory published on October 25 https://jenkins.io/security/advisory/2023-10-25/ Multiple high score vulnerabilities in various plugins During Hacktoberfest, the Content...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Wadeck Follonier
Kevin Martens
Alyssa Tong November 10, 2023
Jenkins September 2023 Newsletter

Key Takeaways JDK21 is around the corner Contributed by: Wadeck Follonier A plugin security advisory was published on September 6. Security Advisory 2023-09-06 This included multiple high score vulnerabilities in various plugins. A core security advisory was published on September 20. Security Advisory 2023-09-20 Multiple vulnerabilities were corrected in core. This advisory also included fixes for a plugin. Contributed by: Mark Waite Voter registration is now open for the 2023 Jenkins...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Wadeck Follonier
Kevin Martens
Alyssa Tong October 12, 2023
Jenkins August 2023 Newsletter

Key Takeaways Jenkins project reports growth of 79% in Jenkins Pipeline, used to propel software delivery. Contributed by: Wadeck Follonier Andrea Chiera completed his 3 months internship within the Security team, auditing 100 plugins and finding 20+ vulnerabilities. Summer Internship in Jenkins security Thank you very much for your involvement and also to the team for mentoring him. A Plugin security advisory was published on August...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Wadeck Follonier
Kevin Martens
Alyssa Tong September 21, 2023
Jenkins July 2023 Newsletter

Key Takeaways A Jenkins Core security advisory was published on July 26 The official documentation has migrated to Java 17 Operating system end of life notifications have been added Contributed by: Wadeck Follonier During July, there were two Security Advisories published: Plugin security advisory published on July 12 Multiple high-score vulnerabilities A total of 16 plugins were affected Jenkins core and plugins security advisory published on July 26 The highest...

Damien DUPORTAL
Mark Waite
Bruno Verachten
Wadeck Follonier
Kevin Martens
Alyssa Tong August 2, 2023
Java 17 usage in Jenkins.io Documentation

Jenkins has fully supported Java 17 since the 2.357 weekly release and 2.361.1 Long Term Support release. For this reason, we have transitioned to using Java 17 in the Jenkins user handbook. This includes the installation guides, Pipeline documentation, and Pipeline syntax. Refer to the GitHub issue for additional information and insight. Background Debian 12 was released on June 10, 2023, and it no longer...

Kevin Martens August 1, 2023