The following Jenkins plugin updates contain fixes for security vulnerabilities:
* Active Choices Plugin 2.5.7
* Scriptler Plugin 3.4
Additionally, we announce unresolved security issues in the following plugins:
* OWASP Dependency-Check Plugin
* Performance Plugin
* pom2config Plugin
* Squash TM Publisher (Squash4Jenkins) Plugin
Please see the advisory for more information:
https://www.jenkins.io/security/advisory/2021-11-12/