Merge branch 'master' into security.txt

.github/workflows/compress-images.yaml

@@ -1,22 +1,56 @@
-name: Compress Images
+# Image Actions will run in the following scenarios:
+# - on Pull Requests containing images (not including forks)
+# - on pushing of images to `master` (for forks)
+# - on demand (https://github.blog/changelog/2020-07-06-github-actions-manual-triggers-with-workflow_dispatch/)
+# - at 11 PM every Sunday in anything gets missed with any of the above scenarios
+# For Pull Requests, the images are added to the PR.
+# For other scenarios, a new PR will be opened if any images are compressed.
+name: Compress images
 on:
-  pull_request_target:
+  pull_request:
     paths:
       - '**.jpg'
       - '**.jpeg'
       - '**.png'
       - '**.webp'
+  push:
+    branches:
+      - master
+    paths:
+      - '**.jpg'
+      - '**.jpeg'
+      - '**.png'
+      - '**.webp'
+  workflow_dispatch:
+  schedule:
+    - cron: '00 23 * * 0'
 jobs:
   build:
     name: calibreapp/image-actions
-    permissions: write-all
     runs-on: ubuntu-latest
+    # Only run on main repo on and PRs that match the main repo.
+    if: |
+      github.repository == 'jenkins-infra/jenkins.io' &&
+      (github.event_name != 'pull_request' ||
+       github.event.pull_request.head.repo.full_name == github.repository)
     steps:
-      - name: Checkout Repo
+      - name: Checkout Branch
         uses: actions/checkout@v4
-
       - name: Compress Images
+        id: calibre
         uses: calibreapp/image-actions@main
         with:
           githubToken: ${{ secrets.GITHUB_TOKEN }}
-          ignorePaths: 'content/images/avatars/**'
+          # For non-Pull Requests, run in compressOnly mode and we'll PR after.
+          compressOnly: ${{ github.event_name != 'pull_request' }}
+      - name: Create Pull Request
+        # If it's not a Pull Request then commit any changes as a new PR.
+        if: |
+          github.event_name != 'pull_request' &&
+          steps.calibre.outputs.markdown != ''
+        uses: peter-evans/create-pull-request@v7
+        with:
+          title: Auto Compress Images
+          branch-suffix: timestamp
+          commit-message: Compress Images
+          body: ${{ steps.calibre.outputs.markdown }}

.github/workflows/updatecli.yaml

@@ -16,7 +16,7 @@ jobs:
         uses: actions/checkout@v4
 
       - name: Install Updatecli in the runner
-        uses: updatecli/updatecli-action@v2.71.0
+        uses: updatecli/updatecli-action@v2.75.0
 
       - name: Run Updatecli in Dry Run mode
         run: updatecli diff --config ./updatecli/updatecli.d --values ./updatecli/values.github-action.yaml

Gemfile

@@ -9,6 +9,7 @@ gem 'webrick', '~> 1.8.1'
 
 gem 'sassc'
 gem 'rouge'
+gem 'iconv'
 
 # Support for various template engines we use
 gem 'haml', '~> 5.2.0'
@@ -17,9 +18,13 @@ gem 'kramdown', '~> 2.5.0'
 
 # Gems necessary for running scripts/fetch-external-resources
 group :fetcher do
-  gem 'faraday', '~> 2.9.0'
+  gem 'faraday', '~> 2.12.0'
   gem 'faraday-follow_redirects', '~> 0.3.0'
   gem 'rubyzip', '~> 2.3.2'
+  # dependencies for faraday 2.12.1
+  gem 'faraday-net_http', '~> 3.4'
+  gem 'json', '~> 2.9'
+  gem 'logger', '~> 1.6', '>= 1.6.3'
 end
 
 gem "concurrent-ruby", "~> 1.1"

Gemfile.lock

@@ -33,12 +33,14 @@ GEM
       eventmachine (>= 0.12.9)
       http_parser.rb (~> 0)
     eventmachine (1.2.7)
-    faraday (2.9.2)
-      faraday-net_http (>= 2.0, < 3.2)
+    faraday (2.12.2)
+      faraday-net_http (>= 2.0, < 3.5)
+      json
+      logger
     faraday-follow_redirects (0.3.0)
       faraday (>= 1, < 3)
-    faraday-net_http (3.1.0)
-      net-http
+    faraday-net_http (3.4.0)
+      net-http (>= 0.5.0)
     ffi (1.13.1)
     formatador (1.1.0)
     git (1.18.0)
@@ -66,13 +68,16 @@ GEM
     http-cookie (1.0.5)
       domain_name (~> 0.5)
     http_parser.rb (0.8.0)
+    iconv (1.1.0)
+    json (2.9.1)
     kramdown (2.5.1)
       rexml (>= 3.3.9)
     liquid (5.5.1)
     listen (3.8.0)
       rb-fsevent (~> 0.10, >= 0.10.3)
       rb-inotify (~> 0.9, >= 0.9.10)
     little-plugger (1.1.4)
+    logger (1.6.4)
     logging (2.3.1)
       little-plugger (~> 1.1)
       multi_json (~> 1.14)
@@ -84,7 +89,7 @@ GEM
     multi_json (1.15.0)
     naturally (2.2.1)
     nenv (0.3.0)
-    net-http (0.4.1)
+    net-http (0.6.0)
       uri
     netrc (0.11.0)
     notiffany (0.1.3)
@@ -125,7 +130,7 @@ GEM
     unf (0.1.4)
       unf_ext
     unf_ext (0.0.8.2)
-    uri (0.13.0)
+    uri (0.13.1)
     webrick (1.8.2)
 
 PLATFORMS
@@ -137,11 +142,15 @@ DEPENDENCIES
   awestruct (~> 0.6.7)
   colorize
   concurrent-ruby (~> 1.1)
-  faraday (~> 2.9.0)
+  faraday (~> 2.12.0)
   faraday-follow_redirects (~> 0.3.0)
+  faraday-net_http (~> 3.4)
   haml (~> 5.2.0)
+  iconv
+  json (~> 2.9)
   kramdown (~> 2.5.0)
   liquid (~> 5.5.0)
+  logger (~> 1.6, >= 1.6.3)
   naturally (~> 2.2.1)
   rouge
   rss

STYLEGUIDE.adoc

@@ -115,7 +115,7 @@ node {
 
 // Declarative //
 pipeline {
-    agent { docker { image 'node:22.11.0-alpine3.20' } }
+    agent { docker { image 'node:22.12.0-alpine3.21' } }
     stages {
 	stage('Build') {
 	    sh 'npm install'

content/_data/authors/harsh-ps-2003.adoc

@@ -4,8 +4,9 @@ github: harsh-ps-2003
 twitter: harsh_ps2003
 linkedin: harsh-pratap-singh-787485255
 ---
-Harsh is currently an undergrad at the Indian Institute of Technology, Kanpur, whose interests lies in rapidly evolving Computer Science fields like Linux Performance, DevOps, GenAI and more. He is an avid open-source contributor and is inspired by the idea of developing useful open-source software for the masses to use. 
+Harsh is currently an undergrad at the Indian Institute of Technology, Kanpur, who is passionate about Distributed Systems, Applied Cryptography and Secure Machine Learning. He is an avid open-source contributor and is inspired by the idea of developing useful open-source software for the masses to use. 
 Other than software development, his interest lies in economics, philosophy, and psychology.
 He was a Jenkins Google Summer of Code (GSoC) contributor in 2023, participating in the link:https://github.com/jenkinsci/gitlab-plugin[GitLab Plugin Modernization] project.
 He started his journey of contributing to Jenkins in February 2023 and got hooked since. He is also a maintainer of link:https://plugins.jenkins.io/gitlab-plugin/[GitLab Plugin].
+Learn more about him from his link:https://harsh-ps-2003.bearblog.dev/[personal website].
 

content/_data/changelogs/weekly.yml

@@ -25420,6 +25420,187 @@
   # pull: 10018 (PR title: Update dependency stylelint to v16.11.0)
   # pull: 10020 (PR title: Update eslint monorepo to v9.16.0)
 
+  - version: '2.489'
+    date: 2024-12-09
+    changes:
+      - type: rfe
+        category: rfe
+        pull: 7569
+        authors:
+          - janfaracik
+          - timja
+          - NotMyFault
+        pr_title: Overhaul search with a Command Palette
+        message: |-
+          Add Command Palette as a replacement for the search bar.
+      - type: rfe
+        category: rfe
+        pull: 9995
+        issue: 74858
+        authors:
+          - tejasdrolia
+        pr_title: "[JENKINS-74858]  Added validation for Password length in FIPS mode"
+        message: |-
+          Added password validation to ensure that existing users cannot create a password of less than 14 characters in length when in FIPS mode.
+      - type: bug
+        category: regression
+        pull: 7078
+        issue: 69549
+        authors:
+          - frankie139506
+          - NotMyFault
+          - timja
+        pr_title: "[JENKINS-69549] Margins for headers and paragraphs make descriptions
+          …"
+        message: |-
+          Reduce spacing in help files.
+      - type: bug
+        category: regression
+        pull: 10022
+        authors:
+          - daniel-beck
+        pr_title: Revert "Fixed spotbugs `PATH_TRAVERSAL_IN` issue in `FileBoolean`"
+        message: |-
+          Restore the original behavior of <code>FileBoolean(Class, String)</code> (regression in 2.488).
+      - type: rfe
+        category: developer
+        pull: 9958
+        issue: 73355
+        authors:
+          - jonesbusy
+        pr_title: JENKINS-73355 Removal of commons-compress from core
+        message: |-
+          Developer: The <code>commons-compress</code> library is no longer provided by Jenkins core, use the <a href="https://plugins.jenkins.io/commons-compress-api/">Commons Compress API plugin</a> instead.
+      - type: rfe
+        category: developer
+        pull: 10019
+        authors:
+          - slide
+        pr_title: Allow subclasses of UpdateSite to call updateData
+        message: |-
+          Developer: Allow <code>UpdateSite</code> subclasses to call <code>updateData</code> method in <code>UpdateSite</code> to write out JSON.
+      - type: rfe
+        category: developer
+        pull: 9959
+        issue: 37241
+        authors:
+          - timja
+        pr_title: "[JENKINS-37241] Support for query parameters in autocomplete"
+        message: |-
+          Developer: Add support for <code>@QueryParameter</code> to the autocomplete component.
+          Change autocomplete component to use <code>POST</code> for sending requests.
+  # pull: 8435 (PR title: Update appearance of keyboard shortcut tooltips)
+  # pull: 10021 (PR title: Update dependency org.jenkins-ci.main:jenkins-test-harness to v2364)
+  # pull: 10027 (PR title: Update dependency globals to v15.13.0)
+  # pull: 10029 (PR title: Update dependency org.jenkins-ci.plugins:junit to v1311)
+  # pull: 10030 (PR title: Update dependency sass to v1.82.0)
+  # pull: 10031 (PR title: Update dependency webpack to v5.97.0)
+  # pull: 10033 (PR title: Update dependency prettier to v3.4.2)
+  # pull: 10034 (PR title: Update dependency sass-loader to v16.0.4)
+  # pull: 10035 (PR title: Fix attributes leaking in the toggle switch component)
+  # pull: 10037 (PR title: Update dependency webpack to v5.97.1)
+  # pull: 10038 (PR title: Update dependency @babel/cli to v7.26.4)
+
+  - version: '2.490'
+    date: 2024-12-17
+    changes:
+      - type: rfe
+        category: rfe
+        pull: 10049
+        authors:
+          - janfaracik
+          - timja
+        pr_title: Add icons to Command Palette
+        message: |-
+          Add icons to Command Palette.
+      - type: rfe
+        category: rfe
+        pull: 10045
+        issue: 73539
+        authors:
+          - timja
+        pr_title: "[JENKINS-73539] Disable YUI by default"
+        message: |-
+          Disable the Yahoo! User Interface library by default.
+      - type: bug
+        category: regression
+        pull: 10065
+        issue: 75003
+        authors:
+          - basil
+        pr_title: "[JENKINS-75003] Zip-based tool installer configuration incorrectly
+          rejects non-HTTP(S) URLs (regression in 2.379)"
+        message: |-
+          Allow non-HTTP(S) URLs in zip-based tool installer configuration (regression in 2.379).
+      - type: bug
+        category: regression
+        pull: 9951
+        issue: 73942
+        authors:
+          - basil
+          - timja
+        pr_title: "[JENKINS-73942] Downloading tgz artifacts in Firefox is broken"
+        message: |-
+          <code>.tgz</code> files are no longer double-gzipped.
+      - type: bug
+        category: bug
+        pull: 10054
+        authors:
+          - timja
+        pr_title: Fix scrolling with keyboard
+        message: |-
+          Fix scrolling with keyboard.
+
+  # pull: 8769 (PR title: Update dependency hotkeys-js to v3.13.9)
+  # pull: 10025 (PR title: Update dependency org.jenkins-ci.plugins:cloudbees-folder to v6.969.v7d22c6eb_fde1)
+  # pull: 10039 (PR title: Expose `User.reload` as beta API)
+  # pull: 10041 (PR title: Update dependency org.jenkins-ci.plugins:credentials to v1393)
+  # pull: 10042 (PR title: `PeepholePermalink.Cache`)
+  # pull: 10044 (PR title: Update jenkins/ath Docker tag to v6103)
+  # pull: 10046 (PR title: Refine Command Palette UI)
+  # pull: 10047 (PR title: Update softprops/action-gh-release action to v2.2.0)
+  # pull: 10048 (PR title: Update jenkins/ath Docker tag to v6107)
+  # pull: 10050 (PR title: Update dependency org.jenkins-ci.plugins:cloudbees-folder to v6.971.v9a_984fd08864)
+  # pull: 10051 (PR title: Update dependency org.apache.maven.skins:maven-fluido-skin to v2.0.1)
+  # pull: 10052 (PR title: Update mina-sshd-api.version to v2.14.0-136.v4d2b_0853615e)
+  # pull: 10053 (PR title: Update dependency org.springframework:spring-framework-bom to v6.2.1)
+  # pull: 10055 (PR title: Update dependency com.puppycrawl.tools:checkstyle to v10.21.0)
+  # pull: 10056 (PR title: Update dependency org.jenkins-ci.plugins:cloudbees-folder to v6.973.vc9b_85a_61e4fc)
+  # pull: 10059 (PR title: Reduce usage of Ant)
+  # pull: 10060 (PR title: Update dependency sass to v1.83.0)
+  # pull: 10062 (PR title: Update dependency postcss-preset-env to v10.1.2)
+  # pull: 10063 (PR title: Update dependency org.jenkins-ci.plugins:cloudbees-folder to v6.975.v4161e479479f)
+  # pull: 10064 (PR title: Update dependency org.springframework.security:spring-security-bom to v6.4.2)
+
+  - version: '2.491'
+    date: 2024-12-19
+    changes:
+      - type: rfe
+        category: rfe
+        pull: 10058
+        authors:
+          - Vlatombe
+        pr_title: "Simplify AtomicFileWriter and use clearer temporary file names"
+        message: |-
+          Avoid printing the same stack trace multiple times when file persistence fails.
+          Temporary file names used by the <code>AtomicFileWriter</code> are now derived from the target file name.
+      - type: bug
+        category: bug
+        pull: 10070
+        authors:
+          - timja
+        pr_title: Revert "Update dependency hotkeys-js to v3.13.9"
+        message: |-
+          Revert update of hotkeys-js dependency introduced in 2.490.
+          The hotkeys-js bump caused a regression with Jenkins plugin BOM tests.
+
+  # pull: 10058 (PR title: Simplify AtomicFileWriter and use clearer temporary file names)
+  # pull: 10066 (PR title: Update dependency com.google.guava:guava to v33.4.0-jre)
+  # pull: 10067 (PR title: Update eslint monorepo to v9.17.0)
+  # pull: 10069 (PR title: Update dependency io.jenkins.plugins:design-library to v332)
+  # pull: 10071 (PR title: Improve Command Palette on mobile)
+  # pull: 10073 (PR title: Update dependency stylelint to v16.12.0)
+
 # DO NOT EDIT THIS FILE DIRECTLY ON GITHUB IF YOU HAVE COMMIT ACCESS
 # ALL CHANGES MUST GO THROUGH PULL REQUESTS
 # MALFORMED FILE CONTENTS WILL BREAK THE SITE BUILD