Security Advisories

Skip to end of metadata
Go to start of metadata

Receive Security Advisories

From time to time, we issue a security advisory to report security problems in Jenkins. You can receive notifications for such advisories in one of the following ways:

See Past Security Advisories

Archive of the past security advisories can be seen in the jenkinsci-advisories mailing list and the security advisories list on this wiki.

Report Security Problems

If you find a vulnerability in Jenkins, please report it in the issue tracker under the "SECURITY" project. This project is configured in such a way that only the reporter and the core Jenkins developers can see the details.

By restricting the access to the potential sensitive information, we can work on the problem and deliver the fix before the method of attack becomes well-known.

For information on what makes a good report in general, see: How to report an issue

Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.