Add warnings for 2025-09-03 security advisory

Author: Kevin-CB

resources/warnings.json

@@ -18884,5 +18884,57 @@
         "pattern": ".*"
       }
     ]
+  },
+  {
+    "id": "SECURITY-3535",
+    "type": "plugin",
+    "name": "global-build-stats",
+    "message": "Missing permission checks allow enumerating graph IDs",
+    "url": "https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3535",
+    "versions": [
+      {
+        "lastVersion": "322.v22f4db_18e2dd",
+        "pattern": "(1|244|269|28[28]|293|30[47]|31[46]|322)(|[.-].+)"
+      }
+    ]
+  },
+  {
+    "id": "SECURITY-3590",
+    "type": "plugin",
+    "name": "git-client",
+    "message": "File system information disclosure vulnerability",
+    "url": "https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3590",
+    "versions": [
+      {
+        "lastVersion": "6.3.2",
+        "pattern": "([1-5]|6[.][0-2]|6[.]3[.][0-2])(|[.-].+)"
+      }
+    ]
+  },
+  {
+    "id": "SECURITY-3602",
+    "type": "plugin",
+    "name": "opentelemetry",
+    "message": "Missing permission check allows capturing credentials",
+    "url": "https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3602",
+    "versions": [
+      {
+        "lastVersion": "3.1543.v8446b_92b_cd64",
+        "pattern": "([0-2]|3[.]1086|3[.]1092|3[.]1111|3[.]113[58]|3[.]120[59]|3[.]1215|3[.]1261|3[.]1270|3[.]129[38]|3[.]131[04]|3[.]1320|3[.]1368|3[.]1383|3[.]1391|3[.]1419|3[.]1423|3[.]1464|3[.]1475|3[.]148[07]|3[.]149[045]|3[.]150[35]|3[.]151[35]|3[.]152[035]|3[.]1543[.]v8446b_92b_cd64)(|[.-].+)"
+      }
+    ]
+  },
+  {
+    "id": "SECURITY-3617",
+    "type": "plugin",
+    "name": "jakarta-mail-api",
+    "message": "SMTP command injection vulnerability",
+    "url": "https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3617",
+    "versions": [
+      {
+        "lastVersion": "2.1.3-2",
+        "pattern": "(2[.]0|2[.]1[.]3[-][12])(|[.-].+)"
+      }
+    ]
   }
 ]