Half a year ago we delivered a security fix for Jenkins that had the potential to break the entire Jenkins UI. We needed to change how Jenkins, through the Stapler web framework, handled HTTP requests, tightening the rules around what requests would be processed by Jenkins. In the six months since, we didn’t receive notable reports of problems resulting from this change, and it’s thanks to...
The Jenkins Contributor Summit brings together current and future contributors to the Jenkins project. At this event we will talk about the current state of the project and its future evolution.