Move plugins refresh button to app bar.
(pull 7770)
Fix the writing of emojis to XML (regression in 2.403).
(issue 71182)
Allow parameter positions to be reordered in job definitions (regression in 2.402).
(issue 71089)
Add a user experimental flag to run Jenkins without Prototype.js.
Plugin authors should enable this flag and fix any issues that result from the removal of Prototype.js.
In the future Prototype.js will be removed from Jenkins core.
(pull 7948)
What's new in 2.403
(2023-05-02)
Remove support for WebSocket agents when running inside Jetty 9.
(pull 7101)
Align source code text and line numbers in views that render source code with the Prism plugin.
(issue 70805)
Rework clouds management into multiple pages to better scale to a large numbers of clouds.
Users of EC2 Plugin should update it to version 2.0.7 or newer for compatibility.
(issue 70729)
Show full width filter field for builds on pages less than 970 pixels wide.
(issue 71115)
Do not write NUL values to XML files.
A technically illegal #x0 (NUL) could be written to Jenkins XML files but could no longer be read.
Now the write will fail as well (regression in 2.398).
(issue 71139)
Fix the warning icon in the workspaces temporary directory message.
(issue 71160)
Do not display a list of page sections on the System page breadcrumb.
(issue 71152)
Add padding to the right side of the full width side panel.
(issue 70115)
Developer: The experimental projectViewNested view has been removed without replacement.
(issue 70927)
What's new in 2.402
(2023-04-25)
Update appearance and framework for link dropdown menus.
(pull 7474)
Remove duplicate section headers from the Tools page.
Remove border at the top of the Tools page for consistency with other pages.
(pull 7716)
Hide the filter field when there's no build in Build History Widget.
(issue 70220)
Restore conditional rendering of headers in some pages and remove non-functional drag handle from some headers (regression in 2.335).
(issue 71089)
Add updates count badge to Updates sidebar item.
(pull 7084)
Simplify loading of JavaScript and CSS.
Users of OWASP DependencyTrack must upgrade to 4.3.1 or later, and users of ServiceNow CI/CD must upgrade to 2.1 or later.
(pull 7827)
Properly iterate over class names in heterogeneous lists (regression in 2.400).
(pull 7845)
A new GPG signing key is used for the Jenkins weekly package repositories. Follow the instructions in the Linux repository signing blog post to install the new public key on your computer.
Add missing Turkish translations for plugins management page.
(pull 7767)
Add missing Turkish translations for tools management page.
(pull 7762)
Remove the expand-button component as it's no longer used.
(pull 7732)
Refresh the design of the About Jenkins page.
(pull 7712)
Hide the Restart Jenkins checkbox in the update center if the controller doesn't support it.
(issue 69489)
Restore the New Node button in computer overview for users with node creation permission.
(issue 70820)
Suppress some noisy stack traces from ProcessTree.
(pull 7681)
Avoid a ClassCastException from TokenBasedRememberMeServices2 (not known to occur in realistic environments).
(pull 7724)
SlaveRestarter implementations are now only installed on static agents.
Use Djenkins.slaves.restarter.JnlpSlaveRestarterInstaller.forceInstall=true to fall back to the previous behaviour in case of any issue.
(pull 7693)
The stopbuilds command did nothing if the last build of the job was already finished, even while earlier builds were running.
(pull 7679)
Add copy button to Jenkins home directory.
(pull 7678)
Simplify the names of the settings in Manage Jenkins.
(pull 7661)
Adjust websocket idle timeout to 60s seconds by default to avoid "WebSocketTimeoutException: Connection Idle Timeout" issues.
Idle timeout is configurable via jenkins.websocket.idleTimeout=.
(issue 69955)
Developer: Ensure required Jelly arguments are correctly labeled as required.
(pull 7644)
What's new in 2.391
(2023-02-14)
The default connection mode for the Java CLI client is now webSocket.
You can specify http to continue to use the former default (for example because you are running Jenkins in a servlet container other than the recommended builtin Jetty, or because you are running an unusual reverse proxy which does not support WebSocket).
You can also continue to specify ssh to use SSH transport (for example because you prefer to authenticate with a private key rather than an API token), or use a native SSH client.
(pull 7605)
Correct responsive behavior on resize of the 'About Jenkins' page.
(issue 70191)
Fix the behaviour of filtering in Build History Widget.
(issue 70438)
Fix behaviour of booleanRadio in a repeatable section.
(issue 70139)
Running pipeline build logs can now be displayed across controller restarts without reloading in some environments.
(pull 7614)
Update bundled Apache Mina SSHD API plugins from 2.9.1-44.v476733c11f82 to 2.9.2-50.va_0e1f42659a_a.
Include fix for unsafe deserialization in SimpleGeneratorHostKeyProvider.
(pull 7623, issue 70554, CVE-2022-45047)
Do not submit empty telemetry data if an error occurred during data collection.
(issue 70533)
Allow WebSocket agent connections to time out after 5m if a write never succeeds.
(issue 70531)
What's new in 2.389
(2023-01-31)
Move set node temporarily offline/online buttons to appbar.
(issue 70394)
Developer: Agent log location honors system property hudson.triggers.SafeTimerTask.logsTargetDir.
(pull 7595)
Developer: Introduced an API SubTask.getOwnerExecutable to be implemented in Pipeline.
(pull 7599)
What's new in 2.388
(2023-01-24)
Fix the TcpSlaveAgentListenerRescheduler functionality.
TcpSlaveAgentListener is automatically restarted on failure.
(issue 70334)
Upgrade Spring Framework from 5.3.24 to 5.3.25.
Spring Framework 5.3.25 includes 18 fixes and documentation improvements.
(Spring Framework 5.3.25 release notes)
What's new in 2.387
(2023-01-17)
Remove the notice in the plugin manager "Updates" page for newer plugin versions that are not compatible with your current core version.
Limit the display of updates to plugin versions actually being offered by the update center for your core version.
(issue 62332)
Add missing breadcrumb items in various locations.
(issue 70169)
Close connection on the agent if the agent's liveness ping receives no response.
(issue 70414)
What's new in 2.386
(2023-01-10)
Do not report implied dependencies for WMI Windows Agents plugin.
(issue 70301)
Developer: f:file now uses the morph tag library, all unknown attributes will be copied to the element.
(pull 7562)
What's new in 2.385
(2023-01-03)
Allow HTML syntax for node descriptions.
(pull 6511)
Hide values in tables showing potentially sensitive system properties and environment variables by default.
(pull 6843)
Add support for badge icons in Management links.
(issue 69339)
Add missing breadcrumb items for agents.
(issue 70169)
Restyle file uploads to match modern forms UI.
(pull 7452)
Add missing breadcrumb items in logging views.
(issue 70169)
Add missing breadcrumb items in builds.
(issue 70169)
Add missing breadcrumb items for agents.
(issue 70169)
Add missing breadcrumb items in Views.
(issue 70169)
Add missing breadcrumb items in abstract classes.
(issue 70169)
Add missing breadcrumb items in User page.
(issue 70169)
Add missing breadcrumb items in system information page.
(issue 70169)
Update the design of the 'Advanced' button.
(pull 7173)
Upgrade XStream from 1.4.19 to 1.4.20.
This maintenance release addresses two security vulnerabilities that can cause a denial of service by raising a stack overflow in affected applications.
It also provides new converters for Optional and Atomic types.
(pull 7548, XStream 1.4.20 changelog, XStream CVE-2022-40151, XStream CVE-2022-41966)
Revert "Label 'Dismiss' buttons red." that was introduced in 2.378.
(issue 70128)
Do not prompt the user that changes may not have been saved after apply has been clicked.
(issue 70112)
Remove negative letter spacing to improve legibility in some languages and fonts.
(pull 7475)
Update appearance and framework for tooltips.
(pull 6408)
Upgrade Spring Security from 5.7.5 to 5.8.0.
Spring Security 5.8.0 includes 71 fixes and improvements.
(Spring Security 5.8.0)
Delete .disabled files when uninstalling a plugin.
(issue 68194)
Developer: better error logging for unexpected problems in Computer.threadPoolForRemoting.
(pull 7284)
What's new in 2.379
(2022-11-22)
Jenkins no longer bundles a patched version of the deprecated Commons HttpClient 3.x library for use by plugins.
Plugins should be migrated to the native Java 11 HTTP client or updated to depend on the legacy Commons HttpClient 3.x API plugin.
(Jenkins patched HttpClient library, Commons HttpClient 3.x)
Set default file size rotation of AsyncPeriodicWork / AsyncAperiodicWork task logs.
(issue 64151)
Remove the deprecated WMI Windows Agents plugin from the setup wizard.
(pull 7414)
Remove the deprecated Multijob plugin from the setup wizard.
(pull 7413)
Add the URL of a plugin to the 'systemInfo' view.
(pull 7367)
Add a "copy to clipboard" button to controller and agent thread dump pages.
Remove the side panel from controller thread dumps.
(pull 7368)
Fix the animation of the popup dialog in the admin monitor.
(issue 70036)
Memory leak when repeatedly connecting WebSocket agents.
(issue 70103)
Wait for 10 seconds before attempting to reconnect a WebSocket agent regardless of whether or not the controller is responding.
(Pull request 603)
Fix a race condition affecting the launch of inbound agents.
(pull 7378)
Developer: Introduce a high level HTTP client API.
(pull 7398)
Upgrade Spring Framework from 5.3.23 to 5.3.24.
Spring Framework 5.3.24 includes 33 fixes and improvements.
(Spring Framework 5.3.24)
Replace 'Changes' view icon with a symbol.
(pull 7229)
Update 'Manage Nodes' page to use app bar and remove sidebar from 'New Node' page.
(pull 7352)
Add telemetry for activation of permissions that are not enabled by default.
(issue 70044)
The minimum required Remoting version has been increased to 4.7 (released on February 16, 2021).
(pull 7340)
Fix overlapping buttons in administrative monitors.
(pull 7366)
Fix consoleview bouncing when new entries appear.
(issue 69587)
Fix error on profile page if the gravatar plugin is installed.
(issue 70023)
Reduce size of the focus state (regression from 2.366).
(issue 69517)
What's new in 2.377
(2022-11-08)
Remove deprecated and unused class UnbufferedBase64InputStream.
(pull 7335)
Developer: Allow detached plugin location to be overridden.
(pull 7303)
Upgrade Spring Security from 5.7.4 to 5.7.5.
Spring Security 5.7.5 includes fixes for two authorization mapping issues affecting the scopes in spring-security-oauth2-client and org.springframework.security.web.access.intercept.AuthorizationFilter.
(Spring Security Release 5.7.5, CVE-2022-31690, CVE-2022-31692)