Changelog for 2.146
Legend:
security fix
major bug fix
bug fix
major enhancement
enhancement
Community feedback:
no major issues
notable issues
required rollback
What's new in 2.146 (2018-10-10)
Important security fixes. (
security advisory
)
Security hardening: Escape variables in Jelly views by default. (
announcement blog post
,
LTS upgrade guide
,
list of affected plugins
)
Security hardening related to Stapler routing. (
SECURITY-595 in the 2018-12-05 security advisory
)
Security hardening related to HTTP verb restrictions for web methods.