2.430.vfb_a_dc7e3687b_

🚀 New features and improvements

• Increase Jenkins baseline to 2.289.x (#159) @TobiX

📦 Dependency updates

• Bump spotless-maven-plugin from 2.22.0 to 2.22.1 (#158) @dependabot

2.426.vb_93dcdb_b_0eb_0

🚀 New features and improvements

• Enable automated releases (#156) @TobiX
• Update TestStatisticsPortlet getRowColor and getTotalRowColor to handle skipped test scenarios (#139) @DouglasLam

🐛 Bug fixes

• JENKINS-68069 - Dashboard View tests fail on Java 17 (#152) @basil
• JENKINS-67201 - Replace the innerHTML to innerText (#132) @stu01509

📦 Dependency updates

• Bump spotless-maven-plugin from 2.17.2 to 2.22.0 (#155) @dependabot

2.19

Security release (2022-03-15)

🐛 Bug fixes

• SECURITY-2559 - Stored XSS vulnerability iframeportlet SECURITY-2565 - add sandbox attribute per default empty with system properties to disable and/or add attribute content (#151) @olamy

📦 Dependency updates

• Bump spotless-maven-plugin from 2.17.2 to 2.22.0 (#155) @dependabot
• Bump git-changelist-maven-extension from 1.2 to 1.3 (#136) @dependabot

2.18

Just a minor clean-up release

🚀 New features and improvements

• Switch from fmt to spotless (#126) @TobiX

📦 Dependency updates

• Replace joda-time dependency with java.time (#125) @jglick
• Bump bom-2.277.x from 831.v9814430e6383 to 961.vf0c9f6f59827 (#114, #116, #120) @dependabot
• Bump plugin from 4.18 to 4.29 (#117, #119, #122, #123) @dependabot

👻 Maintenance

• Removing jenkins overrides in CI (#124) @jglick

2.17

This now requires Jenkins 2.277.1 or newer.

📦 Dependency updates

• Bump bom-2.277.x from 807.v6d348e44c987 to 831.v9814430e6383 (#103) @dependabot
• Bump plugin from 4.16 to 4.18 (#101) @dependabot
• Bump release-drafter/release-drafter from v5.14.0 to v5.15.0 (#100) @dependabot

👻 Maintenance

• Update dependencies using Jenkins bom (#102) @rsandell

2.16

Security release

• Fixes SECURITY-2233/CVE-2021-21649: Stored XSS vulnerability in Image portlet

2.15

Just a maintenance release for a bunch of dependency updates

📦 Dependency updates

• Bump commons-net from 3.6 to 3.8.2 (#81 #97) @dependabot
• Bump dependency versions to fix flaky tests (#87) @fqueiruga
• Bump fmt-maven-plugin from 2.9 to 2.9.1 (#84) @dependabot
• Bump joda-time from 2.10.3 to 2.10.10 (#75 #94) @dependabot
• Bump plugin from 4.9 to 4.16 (#79 #95) @dependabot
• Bump release-drafter/release-drafter from v5.11.0 to v5.14.0 (#74 #91 #96) @dependabot

👻 Maintenance

• Bump dependency versions to fix flaky tests (#87) @fqueiruga
• Add Dependabot configuration (#73) @TobiX

2.14

🚀 New features and improvements

• Make dependency on matrix-project plugin optional (#72) @TobiX

👻 Maintenance

• Switch Release Drafter to a GitHub Action (#70) @TobiX
• Update parent POM (#71) @jglick

2.13

🚀 New features and improvements

• JENKINS-56527 - Add support for JCasC (#67) @cpoenisch
• Add missing repository definitions to pom.xml (#61) @darxriggs

🐛 Bug Fixes

• Make sure job links are relative to the current folder (#66) @TobiX
• Update maven in tests (fixes test failures) (#64) @TobiX

👻 Maintenance

• Update minimum Jenkins version to 2.164.3 (#69) @TobiX
• Replace "recommended" CI configurations with fixed configurations (#68) @TobiX
• Move changelog from the wiki (#63) @zbynek
• Use allItems since order doesn't matter (#62) @res0nance
• Use GitHub as source for plugins.jenkins.io (#60) @TobiX

2.12

Fix for SECURITY-1489 (CVE-2019-10396): Stored XSS vulnerability