Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-40494

Administrative monitor for installed unsafe plugins

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      (Given the nature of this feature I'd really like to have it in LTS ASAP, therefore marking this as Bug so it shows up on the candidates list)

      As announced on the developers mailing list, we will start releasing security advisories about unmaintained plugins with security vulnerabilities without a fix if necessary:
      https://groups.google.com/d/msg/jenkinsci-dev/NaAqqChOVmY/BvA_TuzjAQAJ

      These plugins need to be marked as 'unsafe' in Jenkins.

      • backend-update-center2 needs to be extended (perhaps as separate Downloadable?)
      • Core needs to be extended to
        • consume the new metadata
        • show warnings in appropriate places (admin monitor for installed plugins, plugin manager for updates and available/installed plugins)

        Attachments

          Issue Links

            Activity

            danielbeck Daniel Beck created issue -
            danielbeck Daniel Beck made changes -
            Field Original Value New Value
            Remote Link This issue links to "PR 2680 (Web Link)" [ 15162 ]
            danielbeck Daniel Beck made changes -
            Link This issue is related to INFRA-1022 [ INFRA-1022 ]
            danielbeck Daniel Beck made changes -
            Status Open [ 1 ] In Progress [ 3 ]
            danielbeck Daniel Beck made changes -
            Link This issue is related to WEBSITE-277 [ WEBSITE-277 ]
            danielbeck Daniel Beck made changes -
            Rank Ranked higher
            danielbeck Daniel Beck made changes -
            Rank Ranked higher
            danielbeck Daniel Beck made changes -
            Link This issue is related to INFRA-1028 [ INFRA-1028 ]
            danielbeck Daniel Beck made changes -
            Status In Progress [ 3 ] In Review [ 10005 ]
            danielbeck Daniel Beck made changes -
            Resolution Fixed [ 1 ]
            Status In Review [ 10005 ] Resolved [ 5 ]
            olivergondza Oliver Gond┼ża made changes -
            Labels lts-candidate security 2.32.2-fixed security

              People

              Assignee:
              danielbeck Daniel Beck
              Reporter:
              danielbeck Daniel Beck
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: