Skip to content

Commit

Permalink
Require Jenkins 2.426.3 or newer (#1581)
Browse files Browse the repository at this point in the history
* Require Jenkins 2.426.3 or newer

https://stats.jenkins.io/pluginversions/git.html shows that 82% of the
125k installations of the 5.2.1 release (most recent, 6 months old)
are already running 2.426.3 or newer.

https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314 was
published in Jan 2024 and strongly recommends that users upgrade to
2.426.3 or newer.

* Test with promoted-builds 940.va_9b_59a_717a_b_1

Removes the dependency on project-inheritance.  Previous releases resolved
the security issue that was still open in 3.11.

* Remove recently introduced trailing white space

* Remove dependabot exclusion of promoted builds

* Use (optional) promoted builds 945.v597f5c6a_d3fd

* Remove diff to master branch

* Bump promoted-builds optional dependency to 892.vd6219fc0a_efb

892.vd6219fc0a_efb was released 2 years ago.  Over 50% of all
installations of the promoted builds plugin are already using
892.vd6219fc0a_efb or newer.  Those users will see no difference from
this change, since they are already using 892.vd6219fc0a_efb.

Recent Jenkins versions will display broken icons with
older versions of the promoted builds plugin.  Fixed in
jenkinsci/promoted-builds-plugin#170 as part
of 873.v6149db_d64130.  Upgrading to 892.vd6219fc0a_efb will fix that
issue for users.

https://stats.jenkins.io/pluginversions//promoted-builds.html shows that
892.vd6219fc0a_efb is the second most popular release.  It is second
only to the most recent release, 945.v597f5c6a_d3fd.  Attempts to update
that optional dependency to the most recent release have shown consistent
failures in the plugin bill of materials.

* jenkinsci/bom#3170
* jenkinsci/bom#2809

This likely needs to be combined with the parameterized trigger plugin
upgrade of the same dependency to the same version.  Refer to

* jenkinsci/parameterized-trigger-plugin#378

Bumps [promoted-builds](https://github.com/jenkinsci/promoted-builds-plugin) from 3.11 to 892.vd6219fc0a_efb
- [Release notes](https://github.com/jenkinsci/promoted-builds-plugin/releases/tag/892.vd6219fc0a_efb)

* Do not check for promoted-builds updates
  • Loading branch information
MarkEWaite authored May 7, 2024
1 parent 8e2ff51 commit 3bc3de9
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,7 @@
<revision>5.2.2</revision>
<changelist>-SNAPSHOT</changelist>
<gitHubRepo>jenkinsci/${project.artifactId}-plugin</gitHubRepo>
<jenkins.version>2.414.3</jenkins.version>
<jenkins.version>2.426.3</jenkins.version>
<no-test-jar>false</no-test-jar>
<!-- Jenkins.MANAGE is still in Beta -->
<useBeta>true</useBeta>
Expand All @@ -87,8 +87,8 @@
<dependencies>
<dependency>
<groupId>io.jenkins.tools.bom</groupId>
<artifactId>bom-2.414.x</artifactId>
<version>2982.vdce2153031a_0</version>
<artifactId>bom-2.426.x</artifactId>
<version>3023.v02a_987a_b_3ff9</version>
<type>pom</type>
<scope>import</scope>
</dependency>
Expand Down Expand Up @@ -183,7 +183,7 @@
<dependency>
<groupId>org.jenkins-ci.plugins</groupId>
<artifactId>promoted-builds</artifactId>
<version>3.11</version>
<version>892.vd6219fc0a_efb</version>
<optional>true</optional>
</dependency>
<dependency>
Expand Down

0 comments on commit 3bc3de9

Please sign in to comment.