Changelog

Legend:

security fix
major bug fix
bug fix
major enhancement
enhancement

Community feedback:

no major issues
notable issues
required rollback

RSS

What's new in 2.393 (2023-02-28)

Disable unwanted browser form validation. (issue 70662)
Restore installNecessaryPlugins redirect destination. (issue 70599)
Warn user that copy button requires HTTPS. (issue 21052)

What's new in 2.392 (2023-02-21)

Add a copy button for the code snippets that start agents. (pull 7625)
Update bundled plugins to include fixes announced in 20230124 and 20230215 Jenkins security advisories. (pull 7651, 2023-01-24 security advisory, 2023-02-15 security advisory)
Developer: Ensure required Jelly arguments are correctly labeled as required. (pull 7644)

What's new in 2.391 (2023-02-14)

The default connection mode for the Java CLI client is now webSocket. You can specify http to continue to use the former default (for example because you are running Jenkins in a servlet container other than the recommended builtin Jetty, or because you are running an unusual reverse proxy which does not support WebSocket). You can also continue to specify ssh to use SSH transport (for example because you prefer to authenticate with a private key rather than an API token), or use a native SSH client. (pull 7605)
Correct responsive behavior on resize of the 'About Jenkins' page. (issue 70191)
Fix the behaviour of filtering in Build History Widget. (issue 70438)
Fix behaviour of booleanRadio in a repeatable section. (issue 70139)
Fix computer links navigation consistency. (pull 7608)
Upgrade bundled Winstone from 6.7 to 6.10. Add the excludeProtocols option. Improve logging during shutdown. (pull 7632, Winstone 6.10 changelog, Winstone 6.9 changelog, Winstone 6.8 changelog)

What's new in 2.390 (2023-02-07)

Running pipeline build logs can now be displayed across controller restarts without reloading in some environments. (pull 7614)
Update bundled Apache Mina SSHD API plugins from 2.9.1-44.v476733c11f82 to 2.9.2-50.va_0e1f42659a_a. Include fix for unsafe deserialization in SimpleGeneratorHostKeyProvider. (pull 7623, issue 70554 , CVE-2022-45047)
Do not submit empty telemetry data if an error occurred during data collection. (issue 70533)
Allow WebSocket agent connections to time out after 5m if a write never succeeds. (issue 70531)

What's new in 2.389 (2023-01-31)

Move set node temporarily offline/online buttons to appbar. (issue 70394)
Encode cloud name in Cloud#getUrl. (pull 7573)
Developer: Agent log location honors system property hudson.triggers.SafeTimerTask.logsTargetDir. (pull 7595)
Developer: Introduced an API SubTask.getOwnerExecutable to be implemented in Pipeline. (pull 7599)

What's new in 2.388 (2023-01-24)

Fix the TcpSlaveAgentListenerRescheduler functionality. TcpSlaveAgentListener is automatically restarted on failure. (issue 70334)
Upgrade Spring Framework from 5.3.24 to 5.3.25. Spring Framework 5.3.25 includes 18 fixes and documentation improvements. (Spring Framework 5.3.25 release notes)

What's new in 2.387 (2023-01-17)

Remove the notice in the plugin manager "Updates" page for newer plugin versions that are not compatible with your current core version. Limit the display of updates to plugin versions actually being offered by the update center for your core version. (issue 62332)
Add missing breadcrumb items in various locations. (issue 70169)
Close connection on the agent if the agent's liveness ping receives no response. (issue 70414)

What's new in 2.386 (2023-01-10)

Do not report implied dependencies for WMI Windows Agents plugin. (issue 70301)
Developer: f:file now uses the morph tag library, all unknown attributes will be copied to the element. (pull 7562)

What's new in 2.385 (2023-01-03)

Allow HTML syntax for node descriptions. (pull 6511)
Hide values in tables showing potentially sensitive system properties and environment variables by default. (pull 6843)
Add support for badge icons in Management links. (issue 69339)
Add tabs to System Information page. (pull 7373)
Add missing breadcrumb items for agents. (issue 70169)
Restyle file uploads to match modern forms UI. (pull 7452)
Add missing breadcrumb items in logging views. (issue 70169)
Add missing breadcrumb items in builds. (issue 70169)
Add missing breadcrumb items for agents. (issue 70169)
Add missing breadcrumb items in Views. (issue 70169)
Add missing breadcrumb items in abstract classes. (issue 70169)
Add missing breadcrumb items in User page. (issue 70169)
Add missing breadcrumb items in system information page. (issue 70169)
Update the design of the 'Advanced' button. (pull 7173)
Upgrade XStream from 1.4.19 to 1.4.20. This maintenance release addresses two security vulnerabilities that can cause a denial of service by raising a stack overflow in affected applications. It also provides new converters for Optional and Atomic types. (pull 7548, XStream 1.4.20 changelog, XStream CVE-2022-40151, XStream CVE-2022-41966)
Revert "Label 'Dismiss' buttons red." that was introduced in 2.378. (issue 70128)
Do not prompt the user that changes may not have been saved after apply has been clicked. (issue 70112)
Remove negative letter spacing to improve legibility in some languages and fonts. (pull 7475)
Align table headers with columns. (issue 70117)

What's new in 2.384 (2022-12-26)

Align Build Executor Status collapsed content with build queue design pattern. (issue 70121)
Remove support for log rotation via SIGALRM. The command-line argument --daemon has been removed. (pull 7256)
Restore link to last breadcrumb. (issue 70169)

What's new in 2.383 (2022-12-20)

Add search bar for top level settings in Manage Jenkins. (pull 7314)
Robustness improvement regarding build number collisions. (issue 23152)
Prevent Angry Jenkins when checking a non http(s) based update center URL. (issue 70240)
Improve robustness of class loading on agents. (pull 7526)
Delaying initialization of cryptography needed for TCP inbound agents unless and until such an agent is connected. (issue 70206)
Allow plugins to generate symbol markup from Java code. (issue 68805)

What's new in 2.382 (2022-12-12)

Upgrade Guice from 5.0.1 to 5.1.0. Guice 5.1.0 contains eight fixes and improvements. (Guice 5.1.0 Upgrade Guide)
Add telemetry related to distributed builds. (issue 70199)
Fix the update of disabled plugins. (issue 69183)
Provide native Java 11 HTTP client versions of FormValidation#URLCheck methods. (pull 7508)

What's new in 2.381 (2022-12-04)

Improve tooltip performance. (issue 70178)

What's new in 2.380 (2022-11-29)

Update appearance and framework for tooltips. (pull 6408)
Upgrade Spring Security from 5.7.5 to 5.8.0. Spring Security 5.8.0 includes 71 fixes and improvements. (Spring Security 5.8.0)
Delete .disabled files when uninstalling a plugin. (issue 68194)
Developer: better error logging for unexpected problems in Computer.threadPoolForRemoting. (pull 7284)

What's new in 2.379 (2022-11-22)

Jenkins no longer bundles a patched version of the deprecated Commons HttpClient 3.x library for use by plugins. Plugins should be migrated to the native Java 11 HTTP client or updated to depend on the legacy Commons HttpClient 3.x API plugin. (Jenkins patched HttpClient library, Commons HttpClient 3.x)
Set default file size rotation of AsyncPeriodicWork / AsyncAperiodicWork task logs. (issue 64151)
Remove the deprecated WMI Windows Agents plugin from the setup wizard. (pull 7414)
Remove the deprecated Multijob plugin from the setup wizard. (pull 7413)
Add the URL of a plugin to the 'systemInfo' view. (pull 7367)
Add a "copy to clipboard" button to controller and agent thread dump pages. Remove the side panel from controller thread dumps. (pull 7368)
Fix the animation of the popup dialog in the admin monitor. (issue 70036)
Memory leak when repeatedly connecting WebSocket agents. (issue 70103)
Wait for 10 seconds before attempting to reconnect a WebSocket agent regardless of whether or not the controller is responding. (Pull request 603)
Fix a race condition affecting the launch of inbound agents. (pull 7378)
Developer: Introduce a high level HTTP client API. (pull 7398)
Upgrade Spring Framework from 5.3.23 to 5.3.24. Spring Framework 5.3.24 includes 33 fixes and improvements. (Spring Framework 5.3.24)

What's new in 2.378 (2022-11-14)

Label 'Dismiss' buttons red. (pull 7364)
Replace 'Changes' view icon with a symbol. (pull 7229)
Update 'Manage Nodes' page to use app bar and remove sidebar from 'New Node' page. (pull 7352)
Add telemetry for activation of permissions that are not enabled by default. (issue 70044)
The minimum required Remoting version has been increased to 4.7 (released on February 16, 2021). (pull 7340)
Fix overlapping buttons in administrative monitors. (pull 7366)
Fix consoleview bouncing when new entries appear. (issue 69587)
Fix error on profile page if the gravatar plugin is installed. (issue 70023)
Reduce size of the focus state (regression from 2.366). (issue 69517)

What's new in 2.377 (2022-11-08)

Remove deprecated and unused class UnbufferedBase64InputStream. (pull 7335)
Developer: Allow detached plugin location to be overridden. (pull 7303)
Upgrade Spring Security from 5.7.4 to 5.7.5. Spring Security 5.7.5 includes fixes for two authorization mapping issues affecting the scopes in spring-security-oauth2-client and org.springframework.security.web.access.intercept.AuthorizationFilter. (Spring Security Release 5.7.5, CVE-2022-31690, CVE-2022-31692)

What's new in 2.376 (2022-10-31)

Avoid unnecessary configuration save when reloading configuration from disk. (pull 7305)
Update ANTLR2 grammars and code to ANTLR4. (issue 68652)
Update submit buttons to use .jenkins-button classes. (pull 7203)
Use inbound as the preferred symbol rather than jnlp for inbound agents in JCasC. (pull 7171)
Prevent deadlock on WebSocket agents. (pull 7309)

What's new in 2.375 (2022-10-25)

Prevent a stack overflow when loading a queue (regression in 2.361). (issue 69850)
Improve breadcrumb bar accessibility. (pull 6912)
Update the design of notifications. (pull 7049)
Update the weather and status icons. (issue 65124)
Suppress log messages from periodically running background tasks, such as "Periodic background build discarder". (pull 7281)
Update design of Manage Users page. (pull 7197)
Prevent exception from being thrown when attempting to initiate a safe restart. (regression in 2.374) (issue 69904 , pull 7091)
Align the default value of the HTTP keep-alive timeout in Winstone with that of the upstream Jetty project by changing it from 5 seconds to 30 seconds. Remove unused --ajp13Port, --ajp13ListenAddress, --handlerCountMax, and --handlerCountMaxIdle options. (issue 69509 , Align HTTP keep-alive with Jetty default)
Table column header highlight is overlapping with other header highlight. (issue 69689)
Fix ClassCastException when trying to build a Job whose parameter list is empty. (issue 69637)
Allow serialization of atomic boolean data types on Java 17. (Unable to serialize AtomicBoolean on Java 17)
Update bundled Script Security Plugin from 1172.v35f6a_0b_8207e to 1189.vb_a_b_7c8fd5fde. Update bundled Pipeline: API Plugin from 1144.v61c3180fa_03f to 1164.v760c223ddb_32. Update bundled Pipeline: Supporting APIs Plugin from 813.vb_d7c3d2984a_0 to 839.v35e2736cfd5c. Update bundled SCM API Plugin from 602.v6a_81757a_31d2 to 608.vfa_f971c5a_a_e9. (2022-10-19 Security Advisory, 2022-10-19 Security Advisory)
Developer: Improve JNLP Port Unreachable error message with host value. (pull 7282)
Upgrade Spring Security from 5.7.3 to 5.7.4. Spring Security 5.7.4 includes dependency upgrades and minor fixes. (Spring Security Release 5.7.4)

What's new in 2.374 (2022-10-17)

Clarify safe restart won't wait for Pipeline jobs. (pull 7091)
Allow form checker to check more than one thing at a time. (pull 6951)
Replace the old Jenkins table layout in the slow trigger administrative monitor with the new Jenkins table layout. (issue 69714)
Add documentation for the --paramsFromStdIn and --version command-line options. (pull 7246)
Fix sorting of British currency in tables. (pull 7250)
Developer: Add support for the app-bar component in the side panel. (pull 7051)

What's new in 2.373 (2022-10-11)

Use a more appropriate icon for log records. (pull 7217)
Use a more appropriate Manage Old Data icon. (pull 7216)
Ensure that temporary network partitions do not cancel the WebSocket ping thread (regression in 2.363). (pull 7195)
Deprecate the --extraLibFolder option for removal on or after January 1, 2023. Remove the --toolsJar and --useJasper options. (pull 7112, Deprecate --extraLibFolder option, Remove unused JSP options)

What's new in 2.372 (2022-10-03)

Improve the error message when running the controller on an unsupported Java version. (pull 7185)
Add a "Reset to default" button to reset update site url to default. (issue 69032)
Modernize update center check button. (pull 7183)
Modernize session termination button. (pull 7182)
Improve performance when killing processes at the end of a build on Windows. (issue 67681)
Upgrade the bundled Instance Identity plugin from 3.1 to 116.vf8f487400980. (pull 7175)
Introduce a new interface TriggeredItem. (pull 7131)

What's new in 2.371 (2022-09-26)

Support staging of releases (regression in 2.361). (pull 7138)
An exception is no longer thrown when stopping a stuck build on Windows on Java 17. (issue 69647)

What's new in 2.370 (2022-09-21)

Important security fix. (security advisory)

What's new in 2.369 (2022-09-20)

Replace header icons with ionicons. (pull 7098)
Press '/' to focus the search bar on a page. (pull 7074)
Winstone 6.4: Upgrade Jetty from 10.0.11 to 10.0.12. Support HTTP/2 without the use of a custom --extraLibFolder option. (pull 7117, issue 69624 , Winstone 6.4 changelog, Winstone 6.3 changelog, Jetty 10.0.12 changelog)
Upgrade Spring Framework from 5.3.22 to 5.3.23. (pull 7112, Spring Framework 5.3.23 changelog)
Fix broken UI on Configure Global Security form when plugins with active security warnings are installed (regression in 2.368). (issue 69627)
Table columns get wider or smaller depending on the sort selection. (issue 67864)
Improve build progress animation when refreshing parts of the history/executors widget. (issue 68627)
Fix a race condition that causes file descriptor leaks when cloud agents are created. (issue 69534)
Trigger form validation events after editing a CodeMirror formatted text area. (issue 15604)
Developer: Remove managed, provided dependency on log4j 1.2.17. Plugin builds that depend directly or transitively on log4j 1.2.17 must remove this dependency or exclude it from their build in order for their build to pass. (pull 7028)
Export hudson.model.Run#isInProgress to the json API. (issue 68981)

What's new in 2.368 (2022-09-12)

Show recommended actions (e.g., to update affected plugins) in security warnings popup. (pull 7046)
Fix thread safety in websockets handling. (issue 69543)

What's new in 2.367 (2022-09-06)

Add sidebar to plugin manager, increase search bar size. (pull 6783)
Add support for Apple's touch bar icons. (pull 6768)
Minor changes to empty state arrow icon and header user profile icon. (pull 7052)
Removed: The signed jenkins-parent-${JENKINS_VERSION}-src.zip source archives have been removed from Artifactory for future releases. Users who wish to download source archives for offline consumption are encouraged to do so via GitHub. (pull 7061, Artifactory, GitHub source code download)
Provide more information about the agent connection when it fails with EOFException. (pull 7053)
Display email form validation errors near the data entry field in the setup form. (issue 68952)
Fix autosizing of CodeMirror textbox. (issue 69359)
Fix bouncing build number element on mouse hover. (issue 69145)
Properly reset attributes of cached symbols. (issue 68805)
The dropdown chevron on the build executor queue is no longer misplaced, if the widget is refreshed. (issue 69114)
Developer: Enable ProjectNamingStrategy to check the full name of a new item. (issue 68602)

What's new in 2.366 (2022-08-29)

Fix searchBar is null issue in setup wizard and when using custom Jenkins headers. (issue 69250)
Fix a potential FileAlreadyExistsException error on startup on systems with slow I/O. (issue 67624)
Add focus state in radio buttons. (issue 69398)
Developer: Temporarily restore compatibility with PowerMock-based tests (regression in 2.358). Support for PowerMock will be completely removed on or after June 1, 2023. (pull 7033)
Upgrade Simple Logging Facade for Java (SLF4J from from 1.7.36 to 2.0.0. (pull 7021, Changes in version 2.0.0 of the Simple Logging Facade for Java (SLF4J), SLF4J fluent logging API)

What's new in 2.365 (2022-08-23)

Fix the resize behavior of Execute Shell build steps. (issue 69320)
Allow agent processes to access the changed inbound agent connection URL (regression in 2.364). (issue 69370)
Restore focus state for checkboxes (regression in 2.361). (issue 69276)
Developer: Deprecate AdministrativeError. (pull 6987)
Developer: Upgrade Spring Security from 5.7.2 to 5.7.3. Spring Security 5.7.3 includes 19 fixes and improvements. (pull 6997, Spring Security 5.7.3 changelog)

What's new in 2.364 (2022-08-15)

Remove hierarchal sidebar links. (pull 6907)
Update design of buttons on the dashboard. (pull 6799)
Developer: Support usage of PluginManager#whichPlugin in JenkinsRule-based tests. (pull 6982)
Upgrade Winstone from 6.1 to 6.2. (pull 6978, Winstone 6.2 changelog)

Changelogs of historical releases can be found in the changelog archive.