Jun 3, 2020 · Jenkins limits access to job configuration XML data ( config.xml ) to users with Job/ExtendedRead permission, typically implied by Job/Configure ...

Jenkins Security Advisory... · Stored XSS vulnerability · Reporting Vulnerabilities

... Jenkins security advisories ... In some cases, HTTP proxies with authentication did not work for HTTPS URLs. ... Always send usage statistics over HTTPs to the new ...

... <url> <loc>https://www.jenkins.io/2.0/</loc> ... security-fix-hudson-1-365-released/</loc> ... advisory-in-jenkins-core/</loc> <lastmod>2012-03-06</lastmod> ...

(2017-12-05 security advisory, Ant Plugin fix in 2018-01-22 security advisory) ... Default the built-in Jenkins Update Center URL to https://updates.jenkins.io ...