# This file lists artifacts and specific versions of artifacts to hide in update center. # Possible syntaxes: # - `artifactId` removes all versions of an artifact from distribution # - `artifactId@version` removes specific version of an artifact from distribution # - `artifactId = url` removes all versions of an artifact from distribution, provides deprecation message URL # See the header of deprecations.properties for details about deprecation messages. AntepediaReporter-CI-plugin # closed-souce plugin; removal confirmed with owner, Guillaume Rousseau # service discontinued. Alternative: https://plugins.jenkins.io/appetize/ appio = https://github.com/jenkins-infra/update-center2/pull/465 # service discontinued appthwack = https://wiki.jenkins-ci.org/display/JENKINS/AppThwack+Plugin # renamed to assembla-auth assembla-oauth = https://groups.google.com/d/msg/jenkinsci-dev/TVz-D5etsUM/Knx9zXtEnSwJ assembla-jenkins # Renamed to assembla associated-files-plugin # renamed to associated-files # merged into aws-java-sdk-minimal aws-java-sdk-core = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540 aws-java-sdk-jmespath = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540 aws-java-sdk-kms = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540 aws-java-sdk-s3 = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540 aws-java-sdk-sts = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540 aws-lambda-jenkins-plugin # renamed to aws-lambda aws-lambda-plugin # renamed to aws-lambda aws-yum-paramater # renamed to package-parameter # service discontinued: https://azure.microsoft.com/en-us/updates/azure-dev-spaces-retired-on-may-15-2021/ azure-dev-spaces = https://issues.jenkins.io/browse/JENKINS-71776 # deprecated -- https://github.com/jenkinsci/azure-iot-edge-plugin/blob/master/Readme.md azure-iot-edge = https://github.com/jenkinsci/azure-iot-edge-plugin/blob/master/Readme.md bart = https://github.com/jenkins-infra/update-center2/pull/658 bees-sdk-plugin # removal requested by ndeloof: RUN@cloud service no longer exists binary-deployer # removal requested by alecharp: this plugin was never meant to be deployed. POC project. # "This plugin is no longer supported and should not be used." blackduck-installer = https://wiki.jenkins-ci.org/display/JENKINS/Black+Duck+Vulnerability+Installer+Plugin # End of life. Replaced with Detect blackduck-hub = https://github.com/jenkins-infra/update-center2/pull/261 blitz.io-jenkins # renamed to blitz_io-jenkins # service discontinued: https://en.wikipedia.org/wiki/Blitz_(software) blitz_io-jenkins = https://github.com/jenkins-infra/update-center2/pull/521 # superseded by Extra Columns Plugin build-node-column = https://wiki.jenkins-ci.org/display/JENKINS/Build+Node+Column+Plugin # service discontinued: https://github.com/github/github-services/pull/538 buildcoin-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Buildcoin+Plugin # service discontinued buildheroes = https://wiki.jenkins-ci.org/display/JENKINS/Buildheroes # service discontinued -- see https://www.codescan.io for alternative ways of running codescan = https://github.com/jenkins-infra/update-center2/pull/299 # service shut down caroline = https://wiki.jenkins-ci.org/display/JENKINS/Caroline+Plugin ChatRoom # junk plugin; developer has been banned # service discontinued https://www.chromium.org/developers/how-tos/chrome-frame-getting-started chrome-frame-plugin = https://www.chromium.org/developers/how-tos/chrome-frame-getting-started # Superseded by Publish Over CIFS Plugin cifs = https://wiki.jenkins-ci.org/display/JENKINS/CIFS-Publisher+Plugin # renamed to clang-scanbuild clang-scanbuild-plugin = https://github.com/jenkinsci/clang-scanbuild-plugin/commit/a6d57b67f6fbd0a9893ecf6436c54ecb670d5829 # service discontinued cloudbees-deployer-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Cloudbees+Deployer+Plugin # Unsupported and retracted by service provider cloudbees-enterprise-plugins = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Jenkins+Enterprise cloudbees-plugin-gateway = https://github.com/jenkinsci/cloudbees-plugin-gateway/blob/master/README.md # "This feature is no longer relevant." cloudbees-registration = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Registration+Plugin # renamed to cloudbees-disk-usage-simple several years ago cloudbees-disk-usage-simple-plugin = https://github.com/jenkins-infra/update-center2/pull/179 ColumnPack-plugin # renamed to ColumnsPlugin config-autorefresh-plugin = https://github.com/jenkins-infra/update-center2/pull/711 ConfigurationSlicing # renamed into configurationslicing, and this double causes a check out problem on Windows configuration-as-code-support = https://github.com/jenkinsci/configuration-as-code-plugin/releases/tag/configuration-as-code-1.18 convert-to-declarative # renamed to declarative-pipeline-migration-assistant-plugin convert-to-declarative-api # renamed to declarative-pipeline-migration-assistant-plugin # superseded by ArtifactDeployer Plugin copyarchiver = https://wiki.jenkins-ci.org/display/JENKINS/CopyArchiver+Plugin # Incompatible with Hudson 1.355+ and superseded by xUnit Plugin cppunit = https://wiki.jenkins-ci.org/display/JENKINS/CppUnit+Plugin create-fingerprint-plugin # renamed to create-fingerprint database-drizzle = https://github.com/jenkins-infra/update-center2/pull/757 datadog-build-reporter # renamed to datadog delphix-plugin # renamed to delphix delta-cloud = https://github.com/jenkins-infra/update-center2/pull/775 description-column # renamed to description-column-plugin discobit-autoconfig = https://github.com/jenkins-infra/update-center2/pull/587 # removal requested by teilo, superceded by dockerhub-notification dockerhub = https://github.com/jenkins-infra/update-center2/commit/e5a138873113d0e2d6af59d5699215a1835c15b7 drools # deprecated # deprecated -- eggplant-plugin eggplant-plugin = https://github.com/jenkins-infra/update-center2/pull/578#issuecomment-1073702439 # Superseded by Emotional Jenkins emotional-hudson = https://wiki.jenkins-ci.org/display/JENKINS/Emotional+Hudson+Plugin essentials # replaced by evergreen evergreen # not supposed to be installed manually. We use Incrementals http://repo.jenkins-ci.org/incrementals/io/jenkins/plugins/evergreen # deprecated external-scheduler = https://github.com/jenkins-infra/update-center2/pull/257 fabric-beta-publisher = https://github.com/jenkinsci/fabric-beta-publisher-plugin#deprecation-notice first-plugin # INFRA-1108: Unintended release as part of a plugin tutorial workshop flexteam = https://github.com/jenkins-infra/update-center2/pull/775 foofoo # junk: contains only the HelloWorldBuilder sample foreman-node-sharing # Reimplemented as https://github.com/jenkinsci/node-sharing-plugin/ # superseded by Gerrit Trigger Plugin gerrit = https://wiki.jenkins-ci.org/display/JENKINS/Gerrit+Plugin # no... just... no girls = https://wiki.jenkins-ci.org/display/JENKINS/Girls+Plugin # service discontinued gitorious = https://wiki.jenkins-ci.org/display/JENKINS/Gitorious+Plugin # Google Desktop has been discontinued google-desktop-gadget = https://wiki.jenkins-ci.org/display/JENKINS/Hudson+Google+Desktop+Gadget # service discontinued googlecode = https://wiki.jenkins-ci.org/display/JENKINS/Google+Code+Plugin groovy-events-listener-plugin-master # unintentional fork of groovy-events-listener-plugin # service discontinued hall-jenkins = https://wiki.jenkins-ci.org/display/JENKINS/Hall+Plugin headspin = https://github.com/jenkinsci/headspin-plugin#readme hello-world # people shouldn't actually *publish* the sample project! HiddenParameter # renamed to hidden-parameter hipchat-plugin # renamed to hipchat # service discontinued hockeyapp = https://wiki.jenkins.io/display/JENKINS/HockeyApp+Plugin hpe-network-virtualization = https://support.microfocus.com/kb/kmdoc.php?id=KM03806543 hudson-logaction-plugin # renamed to logaction-plugin hudson-startup-trigger # renamed to startup-trigger-plugin icon-shim-plugin # renamed to icon-shim integrity # renamed to integrity-plugin incapptic-connect-uploader = https://github.com/jenkins-infra/update-center2/pull/574 # service discontinued ion-deployer-plugin = https://wiki.jenkins-ci.org/display/JENKINS/iON+Deployer+Plugin ivy2 # subsumed into the ivy plugin # service discontinued javanet = https://wiki.jenkins-ci.org/display/JENKINS/Java.net+Plugin # service discontinued javanet-uploader = https://wiki.jenkins-ci.org/display/JENKINS/java.net+uploader+Plugin jbehave-hudson-plugin # renamed to jbehave-jenkins-plugin jenkins-leiningen # renamed to leiningen-plugin :'( # deleted by maintainers jenkins-tracker = https://github.com/jenkins-infra/helpdesk/issues/1262 jenkinswalldisplay-pom # renamed to jenkinswalldisplay # unmaintained jenkow-activiti-designer = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Activiti+Designer # unmaintained jenkow-activiti-explorer = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Activiti+Explorer # unmaintained jenkow-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Plugin jgiven-plugin # renamed to jgiven jmeter # renamed to performance # deprecated jshint-checkstyle = https://github.com/jenkins-infra/update-center2/pull/21 jslint-checkstyle # renamed to jshint-checkstyle # renamed to kanboard, see https://issues.jenkins-ci.org/browse/HOSTING-241?focusedCommentId=280720&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-280720 kanboard-publisher = https://github.com/jenkins-infra/update-center2/pull/94 karotz # service discontinued: https://twitter.com/Karotz/status/527852693960658944 -- https://wiki.jenkins-ci.org/display/JENKINS/Karotz+Plugin kato # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Kato+Plugin kmap-jenkins = https://github.com/jenkins-infra/update-center2/pull/587 koji-plugin # renamed to koji kundo # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Kundo+Plugin lechat # renamed to Kata which was discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/LeChat+Plugin loadrunner # closed-source plugin, removal requested by plugin author # service discontinued lightstep-incident-response = https://github.com/jenkinsci/lightstep-incident-response-plugin#readme liverebel-deploy # only worked with obsolete releases -- https://wiki.jenkins-ci.org/display/JENKINS/LiveRebel+Plugin # part of core functionality since 1.433 m2-extra-steps = https://wiki.jenkins-ci.org/display/JENKINS/M2+Extra+Steps+Plugin # service discontinued mansion-cloud = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Cloud+Connector+Plugin mber # service discontinued -- https://wiki.jenkins.io/display/JENKINS/Mber+Plugin # superseded by Relution Publisher mcap-eas-plugin = https://github.com/mwaylabs/jenkins-mcap-eas-plugin mogotest # deprecated: mogotest service no longer exists # Windows DCOM as used by this plugin is blocked by Microsoft security from CVE-2021-26414 # Depends on the windows-slaves plugin that is also suspended multi-slave-config = https://github.com/jenkins-infra/helpdesk/issues/4221#issuecomment-2277844595 # service discontinued mypeople = https://wiki.jenkins-ci.org/display/JENKINS/MyPeople+Plugin # service discontinued nabaztag = https://wiki.jenkins-ci.org/display/JENKINS/Nabaztag+Plugin # product discontinued netio-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Netio-Plugin # superseded by Mail Watcher Plugin nodeofflinenotification = https://wiki.jenkins-ci.org/display/JENKINS/Node+Offline+Notification+Plugin # service discontinued notifo = https://wiki.jenkins-ci.org/display/JENKINS/Notifo+Plugin octoperf-jenkins-plugin # released from wrong repository; will be renamed openstack-plugin # renamed to openstack-cloud # service discontinued origo-issue-notifier = https://wiki.jenkins-ci.org/display/JENKINS/Origo+Issue+Notifier osf-builder-suite-xml-linter = https://github.com/jenkins-infra/update-center2/pull/658 otabuilder # latest sources at https://github.com/jeslyvarghese/otabuilder-plugin but discontinued due to tool chain discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Over-the-Air+Ad+Hoc+Deployment+Plugin+For+iOS paaslane # renamed to paaslane-estimate # renamed to extended-security-settings paranoia = https://github.com/jenkins-infra/update-center2/pull/291 pathignore-plugin # renamed to pathignore # plugin obsolete perfectomobile = https://developers.perfectomobile.com/display/PD/Legacy+%7C+Jenkins+plugin perfectomobile-jenkins # renamed to perfectomobile perfecto = https://help.perfecto.io/perfecto-help/content/perfecto/integrations/jenkins_plugin.htm# PerfPublisher # latest releases use "perfpublisher" # https://jenkins.io/security/advisory/2017-03-20 pipeline-classpath = https://www.jenkins.io/security/plugins/#suspensions # Removed by author pipeline-editor = https://github.com/jenkinsci/pipeline-editor-plugin # Functionality ported to https://github.com/jenkinsci/plasticscm-plugin plasticscm-mergebot = https://github.com/jenkinsci/plasticscm-mergebot-plugin/pull/6 # renamed to poll-mailbox-trigger-plugin poll-mailbox-trigger = https://github.com/jenkins-infra/update-center2/pull/42 # discontinued PoC, use Pretested Integration Plugin instead pretest-commit = https://wiki.jenkins-ci.org/display/JENKINS/Pretest+Commit+Plugin # superseded by ClearCase UCM Plugin PUCM = https://wiki.jenkins-ci.org/display/JENKINS/pucm+plugin rally-bookkeeper # removal requested by Mike Rogers: will be Rally plugin 2.0 rally-update-plugin-1 # renamed to rally-plugin(!) redhat-codeready-dependency-analysis = https://github.com/jenkins-infra/update-center2/pull/740 release-multi-test # junk: contains only the HelloWorldBuilder sample release-test # junk: contains only the HelloWorldBuilder sample Relution # renamed to relution-publisher remoting-security-workaround = https://github.com/jenkins-infra/update-center2/pull/680 # superseded by Team Concert Plugin rtc = https://github.com/jenkins-infra/update-center2/pull/13 sahagin-jenkins-plugin # renamed to sahagin-plugin sample # junk plugin; developer has been banned schedule-build-plugin # renamed to schedule-build # superseded by Naginator Plugin schedule-failed-builds = https://wiki.jenkins-ci.org/display/JENKINS/Retry+Failed+Builds+Plugin # deprecated scis-ad = https://github.com/jenkins-infra/update-center2/commit/5f3f5ae66ea0e819c27d6d1fed9fdb00781f636c # renamed shortly after publication for https://github.com/jenkins-infra/repository-permissions-updater/pull/459#issuecomment-334702817 scm-branch-pr-filter = https://github.com/jenkins-infra/helpdesk/issues/1106 script-realm-extended # fork of a plugin and has since been subsumed -- https://wiki.jenkins-ci.org/display/JENKINS/Script+Security+Realm+Extended # plugin obsolete, replaced by Gradle-based invocation; depublishing as requested by 'silk' in SECURITY-1521 SCTMExecutor = https://github.com/jenkins-infra/update-center2/pull/324 # superseded by Credentials Binding Plugin secret = https://wiki.jenkins-ci.org/display/JENKINS/Build+Secret+Plugin security-no-captcha # Functionality integrated in Jenkins 1.416 -- https://wiki.jenkins-ci.org/display/JENKINS/Security+No+CAPTCHA serenitec # gbossert asked to remove this plugin # superseded by envinject setenv = https://wiki.jenkins-ci.org/display/JENKINS/Setenv+Plugin sladiator-notifier = https://github.com/jenkins-infra/update-center2/pull/775 skytap-cloud-plugin # renamed to skytap sms-notification # renamed to sms # superseded by sonargraph-integration -- sonargraph-plugin = https://github.com/jenkins-infra/update-center2/pull/405 # deprecated (see Sonatype CLM: https://wiki.jenkins-ci.org/x/iYDPAw) sonatype-ci = https://wiki.jenkins.io/display/JENKINS/63930505 squashtm-publisher # removal due to security issue JIRA SECURITY-2525 ssh2easy-plugin # removal requested by plugin author, accidental rename # unused? tepco = https://wiki.jenkins-ci.org/display/JENKINS/TEPCO+Plugin # unused? tepco-epuw = https://wiki.jenkins-ci.org/display/JENKINS/TEPCO+Electric+Power+Usage+Widget TestExecuter # renamed to selected-tests-executor # service discontinued testflight = https://wiki.jenkins-ci.org/display/JENKINS/Testflight+Plugin testproject = https://github.com/jenkins-infra/update-center2/pull/696 TestResultsAnalyzer # renamed to test-results-analyzer thundra-foresight = https://github.com/jenkinsci/thundra-foresight-plugin/issues/8 tusarnotifier # superseded by DTKit Plugin with automatic migration -- https://wiki.jenkins-ci.org/display/JENKINS/TusarNotifier ui-samples-plugin = https://groups.google.com/g/jenkinsci-dev/c/2vGn3t9gZ0Y uithemes # removal requested by tfennelly upload-artifacts-to-nexus # renamed, see https://issues.jenkins-ci.org/browse/HOSTING-41?focusedCommentId=250383&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-250383 # Superseded by URLTrigger Plugin url-change-trigger = https://wiki.jenkins-ci.org/display/JENKINS/URL+Change+Trigger vagrant-plugin # renamed to vagrant, herpderp valid-network # plugin never worked due to reference to src/main/resources in code # service discontinued --- https://wiki.jenkins-ci.org/display/JENKINS/Vessel+plugin https://groups.google.com/d/msg/jenkinsci-dev/L34eAMMWA5o/-AxtRdGsAAAJ vessel = https://groups.google.com/d/msg/jenkinsci-dev/L34eAMMWA5o/-AxtRdGsAAAJ weibo4jenkins # renamed to weibo whitesource = https://docs.mend.io/bundle/unified_agent/page/jenkins_plugin.html # Windows DCOM as used by this plugin is blocked by Microsoft security from CVE-2021-26414 windows-slaves = https://github.com/jenkinsci/windows-slaves-plugin?tab=readme-ov-file#notice-of-deprecation wsnotifier # renamed to websocket # renamed to xltestview-plugin xltest-plugin = https://github.com/jenkinsci/xltestview-plugin/commit/ea034f9929b520e63b9ce15aed9bdb62354146cf # superseded by zap zaproxy = https://wiki.jenkins-ci.org/display/JENKINS/ZAProxy+Plugin zaproxy-jenkins # renamed to zaproxy zubhium # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Zubhium+Plugin #javascript gui libs ace-editor = https://github.com/jenkins-infra/update-center2/pull/857 momentjs = https://github.com/jenkins-infra/update-center2/pull/857 handlebars = https://github.com/jenkins-infra/update-center2/pull/857 numeraljs = https://github.com/jenkins-infra/update-center2/pull/857 bootstrap = https://github.com/jenkins-infra/update-center2/pull/857 # while https://github.com/jenkinsci/kubernetes-pipeline-plugin/pull/31 is unmerged, disables updates sites kubernetes-pipeline-steps@1.3 kubernetes-pipeline-devops-steps@1.3 kubernetes-pipeline-aggregator@1.3 # specific releases active-directory@2.1 # JENKINS-42739 agc-app-upload@1.0 # https://github.com/jenkins-infra/helpdesk/issues/2853 BlameSubversion@1.121 # big number but not the latest release fortify-on-demand-uploader@1.0 # removal requested by Ryan Black, plugin wasn't ready for release gradle@1.27 # JENKINS-45126 matrix-project@1.2.1 # also INFRA-250 matrix-project@1.4.1 # this specific version is excluded for INFRA-250 rebuild@1.2 # release troubles.. skip these rebuild@1.3 # ?? ruby-runtime@0.13 # JENKINS-37353, JENKINS-37771 and JENKINS-38145 jira@2.5.1 # JENKINS-48357 - binary compatibility issues qtest@1.2.0 # draft release and not the latest release qtest@1.4.1 # unexpected release version - latest release is 1.4.2 contrast-continuous-application-security@2.7 # backwards compatibility issue hp-application-automation-tools-plugin@5.6 # JENKINS-55159 - Dependency issues google-compute-engine@3.1.0 # Github issue #85 - Regression build-name-setter-plugin@2.0.0 # breaks builds when using with build-user-vars-plugin https://github.com/jenkinsci/build-name-setter-plugin/issues/39 hp-application-automation-tools-plugin@6.0.1-beta # unexpected release version - latest release is 5.9 ibm-application-security@1.2.7 # Bug that breaks existing jobs from previous versions hp-application-automation-tools-plugin@24.1 # unexpected release version - latest release is 23.4 datadog@7.0.0 # regression: https://github.com/jenkins-infra/helpdesk/issues/4080 ec2@1822.v87175d209b_b_5 # JENKINS-75187 # rogue releases with unknown source ez-templates@1.0.0 ez-templates@1.0.1 ez-templates@1.0.2 ez-templates@1.0.3 ez-templates@1.0.4 ez-templates@1.0.5 jsontrigger # not forked to jenkinsci; released without hosting request build-timeout@1.16-INTEL-1 # broken releases, hpi/jpi does not exist or is not a zip file, resulting in maven errors accurev@0.6.28 analysis-collector@1.21 capitomcat@0.0.4 config-file-provider@1.5 config-rotator@1.1.10 depgraph-view@0.5.1 ez-templates@1.1 gitlab-plugin@1.0.9 job-dsl@1.33 localization-zh-cn@1.0.0 localization-zh-cn@1.0.5 otabuilder@0.3.2 vncrecorder@1.9 warnings@4.29 warnings@4.30 warnings@4.31 build-pipeline-plugin@1.5.0 sge-cloud-plugin@1.17 gitlab-hook@1.4.1 testodyssey-execution@1.1 bitbucket-build-status-notifier@1.3.2 # Suppress accidental release checkmarx@8.1.0 cmakebuilder@3.6.3 # should have been version 2.6.3 build-failure-analyzer@2.27.0 # Should have been 1.27.0 # Suppress a release with regression that can delete Groovy scripts (JENKINS-39620) uno-choice@1.5 uno-choice@1.5.0 # Suppress release while dependent components have not been updated scm-api@2.0 # Suppress Scala Hello World Plugin (HOSTING-235) hello-world-scala # The dependent service is shut down qualys-api-security # Suppress sse-gateway 1.14 - it has unsatisfied dependency on pubsub-light 1.5 sse-gateway@1.14 # JENKINS-46130 delivery-pipeline-plugin@1.0.4 # https://jenkins.io/security/advisory/2017-04-10/ AdaptivePlugin # SECURITY-457 # SECURITY-293 build-flow-plugin = https://www.jenkins.io/security/plugins/#suspensions cas1 # SECURITY-491 cvs-tag # SECURITY-459 # SECURITY-462 dynamicparameter = https://www.jenkins.io/security/plugins/#suspensions # SECURITY-458 grails = https://www.jenkins.io/security/plugins/#suspensions groovyaxis # SECURITY-460 reactor-plugin # SECURITY-487 script-scm # SECURITY-461 scriptler@1.0 # SECURITY-367 etc. scriptler@1.1 # SECURITY-367 etc. scriptler@1.2 # SECURITY-367 etc. scriptler@1.3 # SECURITY-367 etc. scriptler@1.4 # SECURITY-367 etc. scriptler@1.5 # SECURITY-367 etc. scriptler@2.0 # SECURITY-367 etc. scriptler@2.1 # SECURITY-367 etc. scriptler@2.2 # SECURITY-367 etc. scriptler@2.2.1 # SECURITY-367 etc. scriptler@2.3 # SECURITY-367 etc. scriptler@2.4 # SECURITY-367 etc. scriptler@2.4.1 # SECURITY-367 etc. scriptler@2.5 # SECURITY-367 etc. scriptler@2.5.1 # SECURITY-367 etc. scriptler@2.6 # SECURITY-367 etc. scriptler@2.6.1 # SECURITY-367 etc. scriptler@2.7 # SECURITY-367 etc. scriptler@2.9 # SECURITY-367 etc. # SECURITY-456 scripttrigger = https://www.jenkins.io/security/plugins/#suspensions # SECURITY-298 svn-tag = https://www.jenkins.io/security/plugins/#suspensions tcl # SECURITY-379 # These plugins depend on one or more plugins suspended due to the 2017-04-10 advisory # depends on build-flow-plugin, buildgraph-view build-flow-extensions-plugin = https://www.jenkins.io/security/plugins/#suspensions # depends on build-flow-plugin build-flow-test-aggregator = https://www.jenkins.io/security/plugins/#suspensions # depends on build-flow-plugin build-flow-toolbox-plugin = https://www.jenkins.io/security/plugins/#suspensions # depends on build-flow-plugin externalresource-dispatcher = https://groups.google.com/d/msg/jenkinsci-dev/YKfydxnpvyE/mMN7LNBoBgAJ uno-choice@1.0 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.1 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.2 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.3 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.4 # While we serve pre-2.7 update sites; depends on scriptler # uno-choice@1.5 already suspended due to regression # uno-choice@1.5.0 already suspended due to regression uno-choice@1.5.1 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.5.2 # While we serve pre-2.7 update sites; depends on scriptler uno-choice@1.5.3 # While we serve pre-2.7 update sites; depends on scriptler # depends on scripttrigger xtrigger = https://www.jenkins.io/security/plugins/#suspensions # These plugins implement Groovy scripting in an unsafe way, but are currently unreleased -- so suspend preemptively groovy-choice-parameter groovy-script-scheduler plumber # https://jenkins.io/security/advisory/2017-10-11/ speaks # A bad deploy, and maven multi module and no staging means bad bad time blueocean-rest-impl@1.1.3 blueocean-git-pipeline@1.1.3 blueocean-config@1.1.3 blueocean-personalization@1.1.3 blueocean-rest@1.1.3 blueocean-i18n@1.1.3 blueocean-events@1.1.3 blueocean-commons@1.1.3 blueocean-web@1.1.3 blueocean-pipeline-api-impl@1.1.3 blueocean-dashboard@1.1.3 blueocean-jwt@1.1.3 blueocean-github-pipeline@1.1.3 # https://github.com/jenkins-infra/update-center2/pull/671 blueocean-commons@1.26.1-JDK11TEST blueocean-core-js@1.26.1-JDK11TEST blueocean-i18n@1.26.1-JDK11TEST blueocean-pipeline-scm-api@1.26.1-JDK11TEST blueocean-rest@1.26.1-JDK11TEST blueocean-web@1.26.1-JDK11TEST jenkins-design-language@1.26.1-JDK11TEST # Core release that forced script-security downgrade in error - JENKINS-48604 jenkins-war@2.96 # Error during codesigning caused bad signature jenkins-war@2.246 jenkins-war@2.247 # abandoned, superseded by azure-vm-agents, with dependency problem per https://jenkins.io/security/advisory/2018-02-26/#SECURITY-554 azure-slave-plugin # Plugins not fixed in https://jenkins.io/security/advisory/2018-03-26/ copy-to-slave = https://www.jenkins.io/security/plugins/#suspensions perforce = https://www.jenkins.io/security/advisory/2018-03-26/#SECURITY-373 # depends on copy-to-slave build-configurator = https://www.jenkins.io/security/plugins/#suspensions # depends on copy-to-slave lsf-cloud = https://www.jenkins.io/security/plugins/#suspensions # depends on copy-to-slave sge-cloud-plugin = https://www.jenkins.io/security/plugins/#suspensions # depends on perforce reviewboard = https://www.jenkins.io/security/plugins/#suspensions # Licensing issue, see INFRA-2622 liquibase-runner@1.0.0 liquibase-runner@1.0.1 liquibase-runner@1.0.2 liquibase-runner@1.1.0 liquibase-runner@1.2.0 liquibase-runner@1.2.1 liquibase-runner@1.3.0 liquibase-runner@1.4.2 liquibase-runner@1.4.3 liquibase-runner@1.4.4 liquibase-runner@1.4.5 liquibase-runner@1.4.7 # requested by maintainer in https://github.com/jenkins-infra/update-center2/pull/199 websphere-deployer@1.5.5 websphere-deployer@1.5.6 # requested by maintainer allure-jenkins-plugin@3.11.0 # JENKINS-53399 - breaks folder configurations badly enough to break permissions, scripted libraries, etc config-file-provider@3.0 # JENKINS-54073, claimed performance regression as of yet undiagnosed; plus some more minor issues: workflow-job@2.26 # Requested by Mark Waite https://groups.google.com/d/msg/jenkinsci-dev/9MDl1SWeF0o/cvp3_nzjFAAJ # mistakenly used -rc suffix thinking it would only be exposed in the experimental update center git@4.0.0-rc git-client@3.0.0-rc # Replaced by the official fortify plugin https://wiki.jenkins.io/display/JENKINS/Fortify+Plugin fortify360 fortify-cloudscan-jenkins-plugin = https://github.com/jenkinsci/fortify-cloudscan-plugin#deprecation-notice # Failed shading Snakeyaml, 1.9 has both shaded and direct dependency inside configuration-as-code@1.9 # Failed release of Google Compute Engine Plugin 3.3.1 google-compute-engine@3.3.1 # https://jenkins.io/security/advisory/2019-08-07/ simple-travis-runner gcm-notification # maintainer requested, seems the service doesn't exist anymore anyway xltestview-plugin # apparently the service no longer exists anyway # upload-pgyer Version 1.32 does not have a complete fix on security-1044: Stored in plain-text file upload-pgyer@1.32 # https://jenkins.io/security/advisory/2019-09-25/ kubernetes-pipeline-arquillian-steps = https://www.jenkins.io/security/plugins/#suspensions kubernetes-pipeline-steps = https://www.jenkins.io/security/plugins/#suspensions # mandatory dependency to the two plugins above kubernetes-pipeline-aggregator = https://www.jenkins.io/security/plugins/#suspensions # https://jenkins.io/security/advisory/2019-10-16/ puppet-enterprise-pipeline # not actively maintained (https://wiki.jenkins.io/display/JENKINS/Veracode+Scanner+Plugin), replaced by official Veracode plugin https://help.veracode.com/reader/PgbNZUD7j8aY7iG~hQZWxQ/yQtYXnlbLA6wsWodLn5zdw veracode-scanner = https://github.com/jenkins-infra/update-center2/pull/302 # https://issues.jenkins-ci.org/browse/JENKINS-59903 and https://issues.jenkins-ci.org/browse/JENKINS-59907 durable-task@1.31 # https://github.com/jenkinsci/google-compute-engine-plugin/issues/153 and https://github.com/jenkinsci/google-compute-engine-plugin/issues/155 google-compute-engine@4.1.0 # Mistakenly expected "rc" to work the same as beta and alpha pipeline-model-definition@1.5.0-rc1 pipeline-model-api@1.5.0-rc1 pipeline-model-extensions@1.5.0-rc1 pipeline-stage-tags-metadata@1.5.0-rc1 # INFRA-2347: path too long for update-center2 declarative-pipeline-migration-assistant-plugin # https://jenkins.io/security/advisory/2020-03-09/ literate cryptomove # https://github.com/jenkinsci/configuration-as-code-plugin/issues/1339 configuration-as-code@1.37 # https://github.com/jenkinsci/kubesphere-extension-plugin/pull/4#pullrequestreview-386832816 kubesphere-extension@0.1.0 kubesphere-extension@0.2.0 # sshd module was packaged as hpi at least for a time sshd@1.0 sshd@1.1 sshd@1.2 # pending completion of JEP-230 instance-identity@3.0 instance-identity@3.0.1 instance-identity@3.1 instance-identity@3.2 # released twice, with different groupIds selfie-trigger-plugin@1.0 # ambiguous version numbers and released in different groupIds build-pipeline-plugin@1.0 # ambiguous version numbers - see https://repo.jenkins-ci.org/webapp/#/artifacts/browse/tree/General/releases/appscanstandard-integration/ibm-security-appscanstandard-scanner/1.0 (and 1.0.0) ibm-security-appscanstandard-scanner@1.0 # ambiguous version numbers - see https://repo.jenkins-ci.org/webapp/#/artifacts/browse/tree/General/releases/com/etas/jenkins/plugins/text-file-operations/1.2 (and 1.2.0) text-file-operations@1.2 # ambiguous version numbers: 1.0-beta1 is preferred elastest@1.0.0-beta1 # ambiguous version numbers: 0.1.0-alpha-1 is preferred git-forensics@0.1-alpha-1 # ambiguous version numbers: Prefer 1.0 sideex@1.0.0 # Released with different groupIds contrast-continuous-application-security@1.0 dependency-check-jenkins-plugin@1.0.1 diskcheck@0.20 # has both hpi and hpi and they're different (identical contents, different archive checksum) templating-engine@1.0 # Released twice with different groupIds: https://github.com/jenkinsci/async-http-client-plugin/commits/f306ab3 async-http-client@1.7.2 # suspend plugins that weren't distributed based on Maven index before for consistency bitbucket-scm-trait-commit-skip@0.2.0 ez-templates@1.0 job-dsl@1.17 lambdatest-automation@1.9 office-365-connector@1.1.2 openshift-sync@1.0.32 testfairy@2.2 urltrigger@0.42 uipath-automation-package@1.0 node-iterator-api@1.5 # Released with different groupIds aliyun-container-service-deploy@0.1.0 aliyun-container-service-deploy@0.1.1 # re-released with different groupId probably because of 'authentic Jenkins' behavior threadfix@1.4.3 # The following releases have previously been dropped because we didn't allow releases with non-"jenkins" groupId after than the first release with "jenkins" groupId in the past. # This was to filter out plugin releases for Hudson that were newer than Jenkins. # Since we now limit the update center source to repo.jenkins-ci.org/releases, this is not a relevant problem anymore. # This list exists for consistency only, as these releases were never previously available. nerrvana-plugin@1.02.03 nerrvana-plugin@1.02.04 nerrvana-plugin@1.02.05 docker-slaves@1.0 docker-slaves@1.0.1 docker-slaves@1.0.2 docker-slaves@1.0.3 job-dsl@1.6 job-dsl@1.7 play-autotest-plugin@0.0.7 clearcase-ucm-plugin@1.4.0 hp-application-automation-tools-plugin@1.1 hp-application-automation-tools-plugin@1.2 # broken link in plugin-versions.json since it's lowercase testfairy@2.2.5-beta # missing pom file lambdatest-automation@1.16 # Non OSI license: These plugins use a custom license (3 clause BSD + 4th clause about trademark use) ci-with-toad-edge@1.0 ci-with-toad-edge@1.2 ci-with-toad-edge@2.0 ci-with-toad-devops-toolkit # Depublished as agreed with maintainer after SECURITY-1879 in 2020-06-03 security advisory play-autotest-plugin = https://github.com/jenkins-infra/update-center2/pull/384 # Depublishing for RCE vulnerability, see https://www.jenkins.io/security/advisory/2020-07-02/#SECURITY-1738 kubernetes-ci = https://www.jenkins.io/security/plugins/#suspensions # Depublishing for having a dependency on itself, causing JENKINS-63877 tics@1.0 tics@2020.3.0.0 tics@2020.3.0.1 tics@2020.3.0.2 tics@2020.3.0.4 tics@2020.3.0.6 # Depublishing for reflected XSS vulnerability while bringing no real benefits, see https://www.jenkins.io/security/advisory/2020-09-01/#SECURITY-1905 jsgames # XXE vulnerability in https://www.jenkins.io/security/advisory/2020-10-08/#SECURITY-2097 and the service seems to have been shut down anyway nerrvana # Arbitrary file read vulnerability while bringing no real benefits, see https://www.jenkins.io/security/advisory/2020-10-08/#SECURITY-2046 persona = https://www.jenkins.io/security/plugins/#suspensions # Non-open dependency, see INFRA-2751 tfs = https://github.com/jenkins-infra/helpdesk/issues/2319 # INFRA-2487 -- suspend analysis-core and all plugins with a non-optional dependency on it analysis-collector = https://github.com/jenkins-infra/helpdesk/issues/2089 analysis-core = https://github.com/jenkins-infra/helpdesk/issues/2089 android-lint = https://github.com/jenkins-infra/helpdesk/issues/2089 ccm = https://github.com/jenkins-infra/helpdesk/issues/2089 CFLint = https://github.com/jenkins-infra/helpdesk/issues/2089 checkstyle = https://github.com/jenkins-infra/helpdesk/issues/2089 ci-game = https://github.com/jenkins-infra/helpdesk/issues/2089 codeclimate-plugin = https://github.com/jenkins-infra/helpdesk/issues/2089 codescanner = https://github.com/jenkins-infra/helpdesk/issues/2089 cpptest = https://github.com/jenkins-infra/helpdesk/issues/2089 DotCi-Plugins-Starter-Pack = https://github.com/jenkins-infra/helpdesk/issues/2089 dry = https://github.com/jenkins-infra/helpdesk/issues/2089 findbugs = https://github.com/jenkins-infra/helpdesk/issues/2089 php = https://github.com/jenkins-infra/helpdesk/issues/2089 pmd = https://github.com/jenkins-infra/helpdesk/issues/2089 swamp = https://github.com/jenkins-infra/helpdesk/issues/2089 tasks = https://github.com/jenkins-infra/helpdesk/issues/2089 warnings = https://github.com/jenkins-infra/helpdesk/issues/2089 # Functionality merged into warnings-ng to support INFRA-2487 brakeman = https://github.com/jenkinsci/brakeman-plugin/issues/23 # Suppress a release with regression that causes node's computer to be null spotinst@2.0.26 # Typo in version, should have been 1.122 github-api@1.222 # Messed up file, probably from manual upload ca-mat-performance-benchmarking-by-broadcom@1.2 # INFRA-3067 credentials@2.6 # Cache file name too long carbonetes-serverless-container-scanning-and-policy-compliance@1.8.1 # https://www.jenkins.io/security/advisory/2022-01-12/ debian-package-builder = https://www.jenkins.io/security/plugins/#suspensions # https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ buddycloud = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ capitomcat = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ chef = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ ci-skip = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ commit-message-trigger-plugin = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ cucumber = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ devstack = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ gitlab-hook = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ git-notes = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ ikachan = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ installshield = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ jenkinspider = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ mysql-job-databases = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ pathignore = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ perl = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ perl-smoke-test = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ pry = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ pyenv = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ python-wrapper = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ rbenv = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ ruby-runtime = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ rvm = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ singleuseslave = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ travis-yml = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ yammer = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/ # https://www.jenkins.io/security/advisory/2022-02-15/ team-views = https://www.jenkins.io/security/plugins/#suspensions sinatra-chef-builder = https://www.jenkins.io/security/plugins/#suspensions # The plugin has been closed source since 2015 starteam = https://github.com/jenkins-infra/update-center2/pull/571 # Renamed to 'carl' castecho = https://github.com/jenkins-infra/repository-permissions-updater/pull/1461 # Renamed to 'itms-for-jira' itms-junit-report-publisher = https://github.com/jenkins-infra/repository-permissions-updater/pull/1379 # https://www.jenkins.io/security/advisory/2022-03-29/ phoenix-autotest = https://www.jenkins.io/security/plugins/#suspensions # Obsolete and no longer used by Jenkins X, see https://github.com/jenkins-x/jx/issues/7020 jx-pipelines = https://github.com/jenkins-infra/update-center2/pull/590 jx-resources = https://github.com/jenkins-infra/update-center2/pull/590 # Original service/libraries no longer available monkit-plugin = https://groups.google.com/g/jenkinsci-dev/c/1bIdZr8P_Ms # https://www.jenkins.io/security/advisory/2022-05-17/ storable-configs-plugin = https://www.jenkins.io/security/plugins/#suspensions autocomplete-parameter = https://www.jenkins.io/security/plugins/#suspensions # https://github.com/jenkinsci/workflow-api-plugin/pull/226 workflow-api@1162.va_1e49062a_00e # https://issues.jenkins.io/browse/JENKINS-68727 workflow-durable-task-step@1144.vd77b_57189936 # https://issues.jenkins.io/browse/JENKINS-69164 katalon@1.0.31 katalon@1.0.30 katalon@1.0.29 katalon@1.0.28 katalon@1.0.27 katalon@1.0.26 katalon@1.0.25 katalon@1.0.23 katalon@1.0.22 katalon@1.0.21 katalon@1.0.20 katalon@1.0.19 katalon@1.0.18 katalon@1.0.11 katalon@1.0.10 katalon@1.0.9 katalon@1.0.8 katalon@1.0.7 katalon@1.0.6 katalon@1.0.5 katalon@1.0.4 katalon@1.0.3 katalon@1.0.2 katalon@1.0.1 katalon@1.0.0 # Incompatible with Java 8, but does not require 2.357+ to restrict itself to Java 11 only releases of Jenkins trilead-api@1.71.v9e7860a_67a_df kubernetes-cd = https://www.jenkins.io/security/plugins/#suspensions # https://jenkins.io/security/advisory/2022-09-21/ DotCi = https://www.jenkins.io/security/plugins/#suspensions DotCi-DockerPublish = https://www.jenkins.io/security/plugins/#suspensions DotCi-Fig-template = https://www.jenkins.io/security/plugins/#suspensions DotCi-InstallPackages = https://www.jenkins.io/security/plugins/#suspensions DotCiInstallPackages = https://www.jenkins.io/security/plugins/#suspensions # Various plugins with severe issues appearing in https://jenkins.io/security/advisory/2022-09-21/ build-publisher = https://github.com/jenkins-infra/update-center2/pull/644 cons3rt = https://github.com/jenkins-infra/update-center2/pull/644 walti = https://github.com/jenkins-infra/update-center2/pull/644 # Various plugins with long-standing tables to divs issues that block global configuration save # No reason to distribute plugins that block global configuration editing # Blocking job configuration editing is not enough to be included in this list aws-sqs = https://issues.jenkins.io/browse/JENKINS-65834 github-sqs-plugin = https://issues.jenkins.io/browse/JENKINS-65729 job-direct-mail = https://issues.jenkins.io/browse/JENKINS-65478 openstack-heat = https://issues.jenkins.io/browse/JENKINS-65514 # https://jenkins.io/security/advisory/2022-10-19/ fireline = https://www.jenkins.io/security/plugins/#suspensions screenrecorder = https://www.jenkins.io/security/plugins/#suspensions xframium = https://www.jenkins.io/security/plugins/#suspensions # https://jenkins.io/security/advisory/2022-11-15/ config-rotator = https://www.jenkins.io/security/plugins/#suspensions bearychat = https://github.com/jenkinsci/bearychat-plugin/blob/master/README.markdown # abusive ascii-magician # https://github.com/jenkinsci/gitlab-plugin/issues/1419 jersey2-api@2.39-1 # https://github.com/jenkinsci/h2-api-plugin/pull/9 h2-api@10.v8dd81336a_ede # Using a non-free license compuware-ispw-operations@1.0.12 compuware-ispw-operations@2.0.0 compuware-ispw-operations@2.1.0 compuware-scm-downloader@2.0.15 compuware-scm-downloader@2.0.16 # https://jenkins.io/security/advisory/2023-03-21/ mashup-portlets-plugin = https://www.jenkins.io/security/plugins/#suspensions remote-jobs-view-plugin = https://www.jenkins.io/security/plugins/#suspensions # Sidebar link # artifacts released only for testing sidebar-link@2.2.3_94c81e99ec sidebar-link@2.2.3_3769d72d # Using a non-free license synopsys-polaris@1.2.0 synopsys-polaris@1.3.0 synopsys-polaris@1.3.1 synopsys-polaris@1.3.2 synopsys-polaris@1.3.3 # Removing old Delphix Plugin releases # https://github.com/jenkins-infra/update-center2/pull/725 delphix@1.0.0 delphix@1.0.1 delphix@1.0.2 delphix@1.0.3 delphix@1.0.4 delphix@1.0.5 delphix@1.0.6 delphix@1.0.7 delphix@1.0.8 delphix@2.0.0 delphix@2.0.1 delphix@2.0.2 delphix@2.0.3 delphix@2.0.4 # Non-open source dependency # https://github.com/jenkins-infra/helpdesk/issues/3989 delphix@3.0.0 delphix@3.0.1 delphix@3.0.2 delphix@3.0.3 delphix@3.1.0 delphix@3.1.1 # Dependency nexus-platform-api has a proprietary license, helpdesk#3742 nexus-jenkins-plugin # Removing old Batch Task plugin releases batch-task@1.15 # SECURITY-1025 batch-task@1.16 # SECURITY-1025 batch-task@1.17 # SECURITY-1025 batch-task@1.18 # SECURITY-1025 batch-task@1.19 # SECURITY-1025 # Non-open source dependency, refer to: # https://github.com/jenkins-infra/helpdesk/issues/3854 # https://github.com/jenkins-infra/helpdesk/issues/3842#issuecomment-1839385370 # https://github.com/jenkins-infra/helpdesk/issues/3842#issuecomment-1841569022 # https://github.com/jenkins-infra/helpdesk/issues/3842#issuecomment-1847399101 # https://github.com/jenkins-infra/helpdesk/issues/3842#issuecomment-1847559631 crowd2 = https://github.com/jenkins-infra/helpdesk/issues/3854 # Non-open source dependency confluence-publisher = https://github.com/jenkins-infra/helpdesk/issues/3856 # Removing old plugin releases, replaced by black-duck-sigma synopsys-sigma = https://github.com/jenkinsci/synopsys-sigma-plugin/blob/master/README.md # Project discontinued protecode-sc = https://github.com/jenkinsci/protecode-sc-plugin/blob/master/README.md # Renamed to aws-java-sdk2-apigateway aws-java-sdk2-api-gateway # Renamed to aws-java-sdk2-cloudwatchlogs aws-java-sdk2-logs # Combined with aws-java-sdk2-core aws-java-sdk2-sts # Sources were wiped simplify-qa-connector = https://github.com/jenkins-infra/update-center2/pull/849 # JENKINS-75425. breaks Jenkins startup audit-trail@393.v6a_3d1e251274