The following Jenkins plugin updates have been released to fix security vulnerabilities:
* Configuration as Code Plugin 1.27
* JClouds Plugin 2.15
Additionally, we announce unresolved security issues in the following plugins:
* Avatar Plugin
* Build Pipeline Plugin
* Codefresh Integration Plugin
* eggPlant Plugin
* File System SCM Plugin
* Gitlab Authentication Plugin
* Google Cloud Messsaging Notification Plugin
* Mask Passwords Plugin
* PegDown Formatter Plugin
* Relution Enterprise Appstore Publisher Plugin
* Simple Travis Pipeline Runner Plugin
* TestLink Plugin
* VMware Lab Manager Slaves Plugin
* Wall Display Master Project Plugin
* XL TestView Plugin
Please see the advisory for more information:
https://jenkins.io/security/advisory/2019-08-07/