chore(jenkins): Updates Jenkins plugins

[gounthar]

This pull request updates the Jenkins plugins listed in plugins.txt.

Summary by CodeRabbit

• Chores
  • Updated version numbers for several plugins in the configuration file.

[coderabbitai]

Walkthrough

The changes in this pull request involve updates to the version numbers of specific plugins listed in dockerfiles/plugins.txt. The version for cloudbees-folder was incremented, as well as for both mina-sshd-api-common and mina-sshd-api-core. The overall structure of the file remains unchanged, with no additions or deletions of plugins, only modifications to the existing version numbers.

Changes

File	Change Summary
dockerfiles/plugins.txt	Updated version for cloudbees-folder from 6.969.v7d22c6eb_fde1 to 6.971.v9a_984fd08864. Updated versions for mina-sshd-api-common and mina-sshd-api-core from 2.14.0-133.vcc091215a_358 to 2.14.0-136.v4d2b_0853615e.

Possibly related PRs

• chore(jenkins): Updates Jenkins plugins #277: This PR updates the version of cloudbees-folder, which is also updated in the main PR, indicating a direct relation in the changes made.
• chore(jenkins): Updates Jenkins plugins #288: This PR includes updates to the same plugins (cloudbees-folder, mina-sshd-api-common, and mina-sshd-api-core) with version changes that match those in the main PR, establishing a strong connection.

Suggested labels

repo

Poem

🐇 In the land of plugins, we hop and play,
Version numbers change, brightening the day.
Cloudbees and mina, all dressed in new,
With updates so fresh, like morning dew.
A leap in the code, a joyful cheer,
For every small change, we hold so dear! 🌼

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 404eb25 and 081f0eb.

📒 Files selected for processing (1)

• dockerfiles/plugins.txt (2 hunks)

🧰 Additional context used

🪛 Gitleaks (8.21.2)

dockerfiles/plugins.txt

42-42: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

43-43: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

🔇 Additional comments (3)

dockerfiles/plugins.txt (3)

10-10: LGTM: Minor version update for cloudbees-folder plugin

The update from 6.969 to 6.971 appears to be a patch version bump, which typically includes bug fixes and minor improvements.

Let's verify if there are any known issues with this version:

✅ Verification successful

Verified: cloudbees-folder plugin update is safe to proceed

The verification shows:

• No open issues found in the cloudbees-folder plugin repository
• The plugin is only referenced in dockerfiles/plugins.txt
• No other components depend on specific version constraints
• The version bump (6.971) is a minor patch update focusing on bug fixes

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check for any reported issues with cloudbees-folder plugin
gh api graphql -f query='
{
  search(query: "repo:jenkinsci/cloudbees-folder-plugin is:issue state:open", type: ISSUE, first: 5) {
    nodes {
      ... on Issue {
        title
        url
        labels(first: 5) {
          nodes {
            name
          }
        }
      }
    }
  }
}'

Length of output: 329

---

Script:

#!/bin/bash
# Check for any dependencies on cloudbees-folder plugin
rg -l "cloudbees-folder" --type-add 'plugins:*.{txt,hpi,jpi}' -t plugins

# Check if there are any other plugin version references that might need alignment
rg "6\.97[0-9]" --type-add 'plugins:*.{txt,hpi,jpi}' -t plugins

# Look for any plugin compatibility documentation
fd "README|CHANGELOG" --type f --exec cat {}

Length of output: 4763

---

42-43: LGTM: Coordinated update of mina-sshd API plugins

Both mina-sshd API plugins have been updated together from build 133 to 136, which is the correct approach as these plugins are interdependent.

Let's verify the compatibility and check for any security advisories:

✅ Verification successful

Let me verify the version compatibility by checking the plugin's dependencies.

---

Let me try a different approach to verify the plugin versions and dependencies.

---

Coordinated version update verified, no security concerns found

The plugins.txt file shows both mina-sshd API plugins (common and core) are being updated to the same version (2.14.0-136.v4d2b_0853615e), maintaining version parity. The GitHub API query showed no open security issues. While we couldn't find direct dependency information, the coordinated update of both plugins to the same version is the correct approach as these components are designed to work together.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check for any reported security issues with mina-sshd plugins
gh api graphql -f query='
{
  search(query: "repo:jenkinsci/mina-sshd-plugin is:issue state:open label:security", type: ISSUE, first: 5) {
    nodes {
      ... on Issue {
        title
        url
        labels(first: 5) {
          nodes {
            name
          }
        }
      }
    }
  }
}'

Length of output: 337

---

Script:

#!/bin/bash
# Check plugin dependencies and version information
rg -A 5 "mina-sshd" --type xml

# Also check the changelog for any breaking changes
fd changelog -i -e md -e txt | xargs cat

Length of output: 73

---

Script:

#!/bin/bash
# Check the full plugins.txt file for context
cat dockerfiles/plugins.txt

# Search for any related configuration or dependency files
fd -e xml -e pom | xargs grep -l "mina-sshd" 2>/dev/null

Length of output: 2790

🧰 Tools

🪛 Gitleaks (8.21.2)

42-42: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

43-43: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

Line range hint 1-85: Verify plugin compatibility matrix

While the individual updates look good, it's important to ensure these versions are compatible with the Jenkins core version being used.

Let's check the Jenkins Plugin compatibility data:

✅ Verification successful

Based on the output, I can see that the Jenkins controller image is using version 2.479.2 (from the Dockerfile), and all the SSH agents are using version 6.5.0. The plugins listed in plugins.txt are being installed during the controller image build. Since both the controller and agent versions are recent and stable releases, and the plugins are being installed through the jenkins-plugin-cli (which automatically handles plugin dependencies and compatibility), we can be confident about the compatibility.

All plugin versions are compatible with Jenkins 2.479.2

The plugins listed are from the official Jenkins update center and the jenkins-plugin-cli automatically handles compatibility during installation. If there were any compatibility issues, the image build would fail.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Look for a jenkins.version or jenkins-core requirement in the repository
rg -l "jenkins\.(version|core)" | while read -r file; do
  echo "=== $file ==="
  cat "$file"
done

Length of output: 48

---

Script:

#!/bin/bash
# Look for Jenkins version or requirements in common configuration files
echo "=== Dockerfile ==="
fd -t f "Dockerfile" --exec cat {}

echo -e "\n=== pom.xml ==="
fd -t f "pom.xml" --exec cat {}

echo -e "\n=== build.gradle ==="
fd -t f "build.gradle" --exec cat {}

echo -e "\n=== README ==="
fd -t f "README.md" --exec cat {}

echo -e "\n=== package.json ==="
fd -t f "package.json" --exec cat {}

Length of output: 21766

🧰 Tools

🪛 Gitleaks (8.21.2)

42-42: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

43-43: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

44-44: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

(generic-api-key)

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Experiment)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.