1294.v99333c047434

🚀 New features and improvements

• Added toFloat and toInteger to whitelist (#544) @StefanSpieker

🐛 Bug fixes

• Fix reloading configuration from disk (#545) @Vlatombe
• JENKINS-72325 - Define an executor and scheduler for SandboxResolvingClassLoader (#543) @basil
• convertDeprecatedApprovedClasspathEntriesThread should be transient (#538) @jglick

📦 Dependency updates

• Bump io.jenkins.tools.bom:bom-2.387.x from 2357.v1043f8578392 to 2543.vfb_1a_5fb_9496d (#536) @dependabot

1281.v22fb_899df1a_e

🐛 Bug fixes

• Add break tag in ScriptSecurity plugin page (#542) @michalrys

📦 Dependency updates

• Bump org.jenkins-ci.plugins:plugin from 4.73 to 4.75 (#537) @dependabot

1275.v23895f409fb_d

👷 Changes for plugin developers

• forward compatibility with core-8418 (#522) @mawinter69

🚦 Tests

• forward compatibility with core-8418 (#522) @mawinter69

1274.v2b_33362a_f2f5

👷 Changes for plugin developers

• Bump org.jenkins-ci.plugins:plugin from 4.72 to 4.73 (#524) @dependabot

📦 Dependency updates

• Bump org.jenkins-ci.plugins:plugin from 4.72 to 4.73 (#524) @dependabot

1273.v66c1964f0dfd

🚀 New features and improvements

• Update ScriptApprovalLink icon (#521) @strangelookingnerd

1271.vdede89739a_81

👷 Changes for plugin developers

• Bump bom and baseline (#520) @timja

1269.v639888f5e366

👷 Changes for plugin developers

• JENKINS-71808 - GenericWhitelistTest#sanity fails on Java 21 (#519) @basil

📦 Dependency updates

• Bump org.jenkins-ci.plugins:plugin from 4.71 to 4.72 (#518) @dependabot

1265.va_fb_290b_4b_d34

Security hardening: Jobs saved by administrators will no longer result in unapproved scripts in those configurations being approved. Administrators now need to explicitly approve unapproved scripts, either through the existing UI, or by using the new inline approval button available in script field form validation messages.

The previous behavior resulted in unexpectedly approved scripts when administrators copied jobs or entire folders (approving potentially never seen scripts, similar to the hardening in 1172.v35f6a_0b_8207e), and increased the impact of SECURITY-3106 in the Folders Plugin.

1251.1253.v4e638b_e3b_221

Security hardening: Jobs saved by administrators will no longer result in unapproved scripts in those configurations being saved. Administrators now need to explicitly approve unapproved scripts, either through the existing UI, or by using the new inline approval button available in script field form validation messages.

The previous behavior resulted in unexpectedly approved scripts when administrators copied jobs or entire folders (approving potentially never seen scripts, similar to the hardening in 1172.v35f6a_0b_8207e), and increased the impact of SECURITY-3106 in the Folders Plugin.

1264.vecf66020eb_7d

👷 Changes for plugin developers

• Bump plugin from 4.65 to 4.66 (#508) @dependabot

👻 Maintenance

• Remove unnecessary workarounds (#517) @basil

📦 Dependency updates

• Bump git-changelist-maven-extension from 1.6 to 1.7 (#513) @dependabot
• Bump plugin from 4.68 to 4.71 (#515) @dependabot
• Bump plugin from 4.67 to 4.68 (#511) @dependabot
• Bump plugin from 4.66 to 4.67 (#510) @dependabot