jenkins: update to 2.387.1
A serious XSRF vulnerability was recently discovered in Jenkins
core and plugin-manager. This upgrades us to the latest secure
version as well as updates various plugins that also had security
advisories.
This change also adds in the cloudbees-disk-usage-simple plugin
to silence an error that was being created because it was missing.
Signed-off-by: Kelley Spoon <kelley.spoon@linaro.org>
Change-Id: If167c3942d6c4fd9e0f08ad8ab0cbdc9a61617ff
diff --git a/jenkins-controller-eclair/Dockerfile b/jenkins-controller-eclair/Dockerfile
index c4006b9..5f2dd55 100644
--- a/jenkins-controller-eclair/Dockerfile
+++ b/jenkins-controller-eclair/Dockerfile
@@ -1,4 +1,4 @@
-FROM jenkins/jenkins:2.375.3-lts-slim
+FROM jenkins/jenkins:2.387.1-lts-slim
ENV JENKINS_JAVA_PARAMETERS="-server -XX:+AlwaysPreTouch -XX:+HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=/var/log/jenkins/heapdump.log -XX:+UseG1GC -XX:+UseStringDeduplication -XX:+ParallelRefProcEnabled -XX:+ExplicitGCInvokesConcurrent -XX:+UnlockDiagnosticVMOptions -XX:G1SummarizeRSetStatsPeriod=1 -XX:MaxMetaspaceExpansion=64M -Djenkins.model.Jenkins.logStartupPerformance=true"
ENV JAVA_OPTS="$JENKINS_JAVA_PARAMETERS -Djava.awt.headless=true -Dhudson.slaves.WorkspaceList='_' -Dhudson.model.ParametersAction.keepUndefinedParameters=true -Dorg.jenkinsci.plugins.gitclient.Git.timeOut=30 -Dorg.eclipse.jetty.server.Request.maxFormContentSize=1000000"
diff --git a/jenkins-controller-eclair/plugins.txt b/jenkins-controller-eclair/plugins.txt
index 5898ffd..b1160c4 100644
--- a/jenkins-controller-eclair/plugins.txt
+++ b/jenkins-controller-eclair/plugins.txt
@@ -1,19 +1,19 @@
-basic-branch-build-strategies:1.3.2
+basic-branch-build-strategies:71.vc1421f89888e
build-name-setter:2.2.0
-build-timeout:1.21
-blueocean:1.25.5
-copyartifact:1.46.4
-docker-plugin:1.2.9
+build-timeout:1.28
+blueocean:1.27.2
+copyartifact:686.v6fd37018d7c2
+docker-plugin:1.3.0
docker-slaves:1.0.7
-ec2:2.0.3
+ec2:2.0.6
ec2-fleet:2.5.2
-email-ext:2.92
-envinject:2.866.v5c0403e3d4df
+email-ext:2.94
+envinject:2.901.v0038b_6471582
envinject-api:1.199.v3ce31253ed13
extended-read-permission:3.2
flexible-publish:0.16.1
-generic-webhook-trigger:1.85.2
-gerrit-trigger:2.38.0
+generic-webhook-trigger:1.86.2
+gerrit-trigger:2.39.0
git-parameter:0.9.18
github-oauth:0.39
groovy-postbuild:2.5
@@ -21,11 +21,11 @@
jenkins-multijob-plugin:623.v03401733c9a_9
jobConfigHistory:1191.v168c8c2b_956a
leastload:3.0.0
-lockable-resources:2.15
-matrix-auth:3.1.5
-monitoring:1.91.0
+lockable-resources:1131.vb_7c3d377e723
+matrix-auth:3.1.6
+monitoring:1.92.0
multiple-scms:0.8
-parameterized-trigger:2.44
+parameterized-trigger:2.45
parameterized-scheduler:1.0
pipeline-github:2.8-138.d766e30bb08b
pipeline-github-lib:38.v445716ea_edda_
@@ -37,16 +37,17 @@
rebuild:1.34
role-strategy:488.v0634ce149b_8c
s3:0.12.3436.v674b_46258039
-ssh-agent:295.v9ca_a_1c7cc3a_a_
-ssh-slaves:2.854.v7fd446b_337c9
-slack:608.v19e3b_44b_b_9ff
-timestamper:1.17
-throttle-concurrents:2.8
+ssh-agent:327.v230ecd01f86f
+ssh-slaves:2.877.v365f5eb_a_b_eec
+slack:631.v40deea_40323b
+timestamper:1.22
+throttle-concurrents:2.11
windows-slaves:1.8.1
-ws-cleanup:0.42
+ws-cleanup:0.44
yet-another-docker-plugin:0.2.0
warnings-ng
analysis-model-api
data-tables-api
forensics-api
prism-api
+cloudbees-disk-usage-simple:178.v1a_4d2f6359a_8