Update Jenkins to 2.263.4 and plugins
Multiple vulnerabilities have been reported in the Jenkins, so we
need to update it to the newest stable version
Related-Prod: PROD-36021
Related-Prod: PROD-36170
Change-Id: Ib0f7e968c9ec0c8d5f835749d2715f4b2dc70dad
diff --git a/Dockerfile b/Dockerfile
index 6f921dd..6e09ab9 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -51,10 +51,10 @@
# jenkins version being bundled in this docker image
ARG JENKINS_VERSION
-ENV JENKINS_VERSION ${JENKINS_VERSION:-2.204.3}
+ENV JENKINS_VERSION ${JENKINS_VERSION:-2.263.4}
# jenkins.war checksum, download will be validated using it
-ARG JENKINS_SHA=aa35f86e92812b511fd97f52e22b1e35965ef984f5eb60215b70b5914f9dc9ea
+ARG JENKINS_SHA=1d4a7409784236a84478b76f3f2139939c0d7a3b4b2e53b1fcef400c14903ab6
# Can be used to customize where jenkins.war get downloaded from
ARG JENKINS_URL=https://repo.jenkins-ci.org/public/org/jenkins-ci/main/jenkins-war/${JENKINS_VERSION}/jenkins-war-${JENKINS_VERSION}.war
@@ -93,8 +93,8 @@
# list of plugins which should be installed. Doesn't include deps list, which specified in jenkins-plugins-deps file.
RUN JENKINS_UC_DOWNLOAD=http://archives.jenkins-ci.org /usr/local/bin/install-plugins.sh \
antisamy-markup-formatter:1.5 \
- artifactory:2.16.2 \
- audit-trail:2.5 \
+ artifactory:3.10.6 \
+ audit-trail:3.8 \
blueocean:1.9.0 \
build-blocker-plugin:1.7.3 \
build-monitor-plugin:1.12+build.201809061734 \
@@ -102,25 +102,25 @@
build-user-vars-plugin:1.5 \
categorized-view:1.10 \
command-launcher:1.2 \
- copyartifact:1.41 \
+ copyartifact:1.46 \
description-setter:1.10 \
discard-old-build:1.05 \
docker-workflow:1.17 \
- email-ext:2.63 \
- envinject:2.1.6 \
+ email-ext:2.82 \
+ envinject:2.4.0 \
extended-choice-parameter:0.76 \
extensible-choice-parameter:1.6.0 \
- gerrit-trigger:2.27.7 \
- git:3.9.1 \
+ gerrit-trigger:2.33.0 \
+ git:4.6.0 \
github:1.29.3 \
heavy-job:1.1 \
jdk-tool:1.1 \
jobConfigHistory:2.18.2 \
jira:3.0.3 \
ldap:1.20 \
- lockable-resources:2.3 \
- matrix-auth:2.3 \
- monitoring:1.74.0 \
+ lockable-resources:2.10 \
+ matrix-auth:2.6.6 \
+ monitoring:1.87.0 \
multiple-scms:0.6 \
performance:3.12 \
permissive-script-security:0.3 \
@@ -129,13 +129,13 @@
prometheus:2.0.0 \
rebuild:1.29 \
simple-theme-plugin:0.5.1 \
- slack:2.3 \
+ slack:2.47 \
ssh-agent:1.17 \
ssh-slaves:1.29.4 \
test-stability:2.3 \
throttle-concurrents:2.0.1 \
workflow-cps:2.58 \
- workflow-remote-loader:1.4 \
+ workflow-remote-loader:1.5 \
workflow-scm-step:2.7
# Switch user for cleanup
diff --git a/jenkins-plugins-deps b/jenkins-plugins-deps
index b80d143..083f699 100644
--- a/jenkins-plugins-deps
+++ b/jenkins-plugins-deps
@@ -34,7 +34,7 @@
cloudbees-bitbucket-branch-source:2.2.12
cloudbees-folder:6.5.1
command-launcher:1.2
-config-file-provider:3.3
+config-file-provider:3.7.0
credentials-binding:1.16
credentials:2.1.18
display-url-api:2.2.0
@@ -45,7 +45,7 @@
favorite:2.3.2
git-client:2.7.3
git-server:1.7
-git:3.9.1
+git:3.12.1
github-api:1.92
github-branch-source:2.4.1
github:1.29.3
@@ -65,8 +65,8 @@
junit:1.26.1
mailer:1.21
matrix-project:1.13
-maven-plugin:3.1.2
-mercurial:2.4
+maven-plugin:3.10
+mercurial:2.14
metrics:4.0.2.2
momentjs:1.1.1
multiple-scms:0.6
@@ -102,4 +102,4 @@
workflow-multibranch:2.20
workflow-scm-step:2.7
workflow-step-api:2.16
-workflow-support:2.21
\ No newline at end of file
+workflow-support:2.21