Artifact deployer plugin security issues fixed but warnings remain

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Artifact deployer plugin security issues fixed but warnings remain

Franck Gilliers
Hi,

I have to update plugin artifact deployer on site, but warnings on security vulnerabilities prevent this task.

Sean, the maintener of the plugin does not seem to know how to remove this warning, although he updated the plugin to version 1.2 and fixed these issues.

Please could you update related information or give the entry point to update this information ?

Best regards
Franck

--
You received this message because you are subscribed to the Google Groups "Jenkins Developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/003c9ca0-d128-4856-8371-8645160466c8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Reply | Threaded
Open this post in threaded view
|

Re: Artifact deployer plugin security issues fixed but warnings remain

Arnaud Tamaillon
Hi,

The warnings are managed through the https://github.com/jenkins-infra/backend-update-center2 repository.
So a PR has to be filled to removed the warnings, most probably to modify the pattern of vulnerable versions here: https://github.com/jenkins-infra/backend-update-center2/blob/master/src/main/resources/warnings.json#L349

Regards,

Arnaud


Le vendredi 22 décembre 2017 16:51:09 UTC+1, Franck Gilliers a écrit :
Hi,

I have to update plugin <a href="https://wiki.jenkins.io/display/JENKINS/ArtifactDeployer+Plugin" target="_blank" rel="nofollow" onmousedown="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fwiki.jenkins.io%2Fdisplay%2FJENKINS%2FArtifactDeployer%2BPlugin\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNGDEl1-uEmAr-l2Uay3XYe8ej2DtA&#39;;return true;" onclick="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fwiki.jenkins.io%2Fdisplay%2FJENKINS%2FArtifactDeployer%2BPlugin\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNGDEl1-uEmAr-l2Uay3XYe8ej2DtA&#39;;return true;">artifact deployer on site, but warnings on security vulnerabilities prevent this task.

Sean, the maintener of the plugin does not seem to know how to remove this warning, although he updated the plugin to version 1.2 and fixed these issues.

Please could you update related information or give the entry point to update this information ?

Best regards
Franck

--
You received this message because you are subscribed to the Google Groups "Jenkins Developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/94af1ce8-bc9d-4b24-8c45-1c761c1a4055%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.