JENKINS-43637 Removed blacklisting from PostBuildScript plugin and cu…

…stomized update center warning
jenkins-infra · Nov 2, 2017 · c02dcbe2c40684f196fd118b3885770963dbc913 · c02dcbe
1 parent 7b2fefa
commit c02dcbe2c40684f196fd118b3885770963dbc913
Unified Split

Showing with 5 additions and 4 deletions.

+0 −1 src/main/resources/artifact-ignores.properties

+5 −3 src/main/resources/warnings.json
diff --git a/src/main/resources/artifact-ignores.properties b/src/main/resources/artifact-ignores.properties
@@ -203,7 +203,6 @@ cvs-tag                       # SECURITY-459
 dynamicparameter              # SECURITY-462
 grails                        # SECURITY-458
 groovyaxis                    # SECURITY-460
-postbuildscript               # SECURITY-295
 proc-cleaner-plugin           # SECURITY-489
 reactor-plugin                # SECURITY-487
 script-scm                    # SECURITY-461

diff --git a/src/main/resources/warnings.json b/src/main/resources/warnings.json
@@ -364,9 +364,11 @@
     "message": "Arbitrary code execution vulnerability",
     "url": "https://jenkins.io/security/advisory/2017-04-10/",
     "versions": [
-      {
-        "pattern": ".*"
-      }
+		{
+			"firstVersion": "0.1",
+			"lastVersion": "0.17",
+			"pattern": "\\b0\\.(\\d|1[1-7])\\b"
+		}
     ]
   },
   {