Jenkins plugins security advisory pre-announcement

[Kevin Guerroudj]

The Jenkins project will publish a security advisory for Jenkins plugins on Wednesday, December 13. The highest severity is 'High' and affects plugins installed on between 1% and 3% of known instances. The most popular included plugins are installed on between 3% and 10% of known instances and have 'Medium' severity issues. The advisory includes issues that will be published without a fix as outlined at https://www.jenkins.io/security/plugins/

This affects only Jenkins plugins, there will be no corresponding security update for Jenkins itself.