[cbi-dev] keeping JIPP up to date

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[cbi-dev] keeping JIPP up to date

From: Jonah Graham <jonah@xxxxxxxxxxxxxxxx>
Date: Thu, 8 Mar 2018 23:20:41 +0000
Delivered-to: cbi-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/cbi-dev>
List-help: <mailto:cbi-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/cbi-dev>, <mailto:cbi-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/cbi-dev>, <mailto:cbi-dev-request@eclipse.org?subject=unsubscribe>

Hi folks,

Who should be keeping JIPPs up to date? Should I be doing that for
CDT, or does Eclipse Webmaster handle this kind of update?

On the CDT JIPP I have some warnings (under a big red 2 in the top right).

New version of Jenkins (2.89.4) is available for download (changelog).
Warnings have been published for the following currently installed components:

Jenkins 2.89.3 core and libraries:

Multiple security vulnerabilities in Jenkins 2.106 and earlier, and
LTS 2.89.3 and earlier

Git plugin 3.7.0:

Users without Overall/Read are able to access lists of user names and node names

promoted builds plugin 2.31:

Unauthorized users are able to run some promotion processes

Gerrit Trigger 2.26.2:

Unauthorized access to some Gerrit Trigger server configuration
Unauthorized users were able to change Gerrit Trigger server configuration

Thanks,
Jonah


~~~
Jonah Graham
Kichwa Coders Ltd.
www.kichwacoders.com

Follow-Ups:
- Re: [cbi-dev] keeping JIPP up to date
  - From: Frederic Gurr
- Re: [cbi-dev] keeping JIPP up to date
  - From: Aleksandar Kurtakov

Prev by Date: Re: [cbi-dev] Support for complex build pipelines?
Next by Date: Re: [cbi-dev] keeping JIPP up to date
Previous by thread: [cbi-dev] Support for complex build pipelines?
Next by thread: Re: [cbi-dev] keeping JIPP up to date
Index(es):
- Date
- Thread

Breadcrumbs