• Type: New Feature
• Resolution: Unresolved
• Priority: Minor
• Component/s: shared-objects-plugin
• Labels:

  None
• Environment:

  LTS

[JENKINS-69697] Update plugin to newer harness for ClassicPluginStrategy

Collapse comment: Mark Waite added a comment - 2022-09-24 19:56

Mark Waite added a comment - 2022-09-24 19:56

Thanks for the report lfiorino.

The plugin has a known security issue. Using a plugin with a known security issue is a much higher risk than any risk from the warning message.

The warning can be resolved by fixing the security issue and by following the "update parent pom" and "update Jenkins version" steps in the "Improve a plugin" tutorial. Are you interested in adopting the plugin so that the warning can be resolved?

The plugin was last released 9 years ago. Unless someone adopts it, the warning and the security issue are not likely to ever be fixed.

If you're not a Clearcase user, then the best choice is probably to remove the plugin, since it seems to be specific to Clearcase use cases.

Expand comment: Mark Waite added a comment - 2022-09-24 19:56

Mark Waite added a comment - 2022-09-24 19:56 Thanks for the report lfiorino . The plugin has a known security issue. Using a plugin with a known security issue is a much higher risk than any risk from the warning message. The warning can be resolved by fixing the security issue and by following the "update parent pom" and "update Jenkins version" steps in the "Improve a plugin" tutorial. Are you interested in adopting the plugin so that the warning can be resolved? The plugin was last released 9 years ago. Unless someone adopts it, the warning and the security issue are not likely to ever be fixed. If you're not a Clearcase user, then the best choice is probably to remove the plugin, since it seems to be specific to Clearcase use cases.