CloudBees CI release notes (archive)

CloudBees CI is a fully-featured, cloud native flexible, scalable CI/CD solution that can be hosted on-premise or in the public cloud. It provides a shared, centrally managed, self-service experience for all your development teams.

Please refer to maintenance lifecycle policy to learn which versions of CloudBees CI are currently supported as well as the supported platforms page for the product to learn which platforms are supported.

The release notes on this page are for CloudBees CI releases that are no longer supported.
Looking for the latest release notes for CloudBees CI? Refer to CloudBees CI release notes.
If you skip versions when you upgrade, refer to previous versions of the release notes for any relevant known issues or upgrade notes. The CloudBees supported platforms and CloudBees maintenance lifecycle policies pages contain additional information about what is supported in this release.

2.414.2.2 Security release

Released: September 20, 2023

CasC Export should escape variable expressions (BEE-38184)

CasC Export now escapes variable expressions. However, variable expressions are not replaced when imported, unless a new configuration is set as pass thru.

This fix introduces a breaking change and any bundle using the variable resolution will stop working. To continue to use and resolve variables in your bundle, configure your CloudBees CI instance before loading your CasC bundles. To configure your CloudBees CI instance do one of the following:

  • Enable the Enable or disable the variable resolution in the item creation for administrator setting on the System configuration page.

  • Configure the cascItemsConfiguration value in the YAML file.

2.401.2.3

Released: June 28, 2023

Pod Security Policy removed from Kubernetes 1.25 (BEE-34726)

Pod Security Policy (PSP) was deprecated in Kubernetes 1.21 and removed from Kubernetes 1.25. As an alternative, you can enforce Pod Security Standards by using Pod Security Admission (PSA). Refer to Pod Security Admission for CloudBees CI on modern cloud platforms for more information.

Operations center sign-on (SSO) does not work for controllers connected using WebSocket transport (BEE-37051)

Operations center sign-on (SSO) is not working from controllers connected using WebSocket. An error is displayed when attempting to log in that the public key is missing.

2.401.1.3

Released: May 31, 2023

CloudBees CasC Server plugin 2.0 upgrade (BEE-32075)

The CloudBees CasC Server plugin 2.0 upgrade introduces bundle branch and tag support. The plugin update changes the folder structure within JENKINS_HOME that stores the Configuration as Code for controller bundles. Due to the change to this folder structure, your existing bundles must be migrated. For more information on migrating your bundles, refer to Migrating Bundles.

Jenkins CLI auth with username/password fails after 2.401.x (BEE-40827)

Username/password authentication is no longer supported for use on the Jenkins CLI on a connected controller when the operations center single sign-on (SSO) is in use. Instead, create an API token on the operations center.

2.387.2.3 Security release

Released: April 5, 2023

Promoted Builds integration removed from the Operations Center Context plugin (BEE-31064)::

The Promoted Builds plugin was removed from the CloudBees Assurance Program (CAP). It was previously integrated with the Operations Center Context plugin.

2.375.3.3

Released: February 8, 2023

Kubernetes-client upgrade to 6.x (BEE-28247)::

The Java library used to access Kubernetes, fabric8 Kubernetes-client, has been upgraded from 5.x to 6.x.

This new Java library version enables customers to provide CustomResourceDefinitions (CRDs) to the provisioning lifecycle, even if they are not part of the client Java model.

This update has no impact for customers who do not use the YAML field under Advanced configuration on the controller configuration screen in the Operations center. For customers using the YAML field under Advanced configuration, this update has the following impact:

  • apiVersion on a resource being deserialized is now required. This prevents the unintentional parsing of custom types without a registered class as a built-in type of the same name. Refer to kubernetes-client/MIGRATION-v6.md at main · fabric8io/kubernetes-client for more technical details about this breaking change.

  • If apiVersion is missing, the controller reprovisioning will fail once the operations center is upgraded until the issue is fixed.

For more information about this upgrade, refer to this knowledge base article, The apiVersion on a resource being deserialized is required after upgrading Kubernetes-client 6.x. The article also contains a script that you can run to check for invalid configurations. The configurations listed in the output of this script should be fixed by providing a valid apiVersion.

If you have questions about this upgrade, contact CloudBees Support for assistance.

2.332.1.4

Released: March 9, 2022

Guava library upgrade (BEE-8569)

The Guava library has been upgraded from 11.0.1 to 31.0.1.

This upgrade removes the usage of deprecated methods for all plugins in the CloudBees Assurance Program (CAP). Please ensure that all other plugins (those not in the CloudBees Assurance Program and any custom developed plugins) are updated to a recent version that is compatible. If you have questions about this upgrade, contact CloudBees Support for assistance.

2.319.2.7

Released: January 18, 2022

Apache Subversion is not available as part of the UBI Docker images

The CloudBees CI on traditional platforms Docker images were recently migrated from Debian to Universal Base Images (UBI). Please note that Apache Subversion is not available as part of the UBI Docker images.

2.319.2.5 Security release

Released: January 12, 2022

CloudBees CI on traditional platforms Docker image migration

The CloudBees CI on traditional platforms Docker images were migrated from Debian to Universal Base Images (UBI) in this release. UBI provides a more secure and stable model for building Docker images.

Please note that, as part of the migration from Debian to UBI, various system packages were not included in the CloudBees CI on traditional platforms Docker images, causing issues in some specific use cases. This issue has been resolved in release 2.319.2.7. CloudBees recommends that you install the latest version to avoid potential issues.

2.319.1.5 Security release

Released: December 1, 2021

Critical upgrade issues for customers using CloudBees Configuration as Code (CasC)
  • If using CasC for controllers to create Pipeline jobs, Multibranch Pipeline jobs, GitHub Organizations, or BitBucket Teams/Projects, you must add the cloudbees-casc-items-controller plugin to the controller’s plugins.yaml file during the upgrade process, before the first restart of the controller. Otherwise, the controller instance fails to restart after the upgrade and an Invalid kind error is returned.

    For more information, refer to Creating a CasC bundle for controllers

  • If configuring a managed controller to be automatically provisioned with CasC, you must add the cloudbees-casc-items-server plugin to the operations center’s plugins.yaml file during the upgrade process, before the first restart of the operations center. Otherwise, the operations center instance fails to restart after the upgrade and an Invalid configuration elements error is returned.

    For more information, refer to Creating a CasC bundle for the operations center.

  • If using CasC for the operations center to create Cluster Operations or controllers, you must add the cloudbees-casc-items-server plugin to the operations center’s plugins.yaml file during the upgrade process, before the first restart of the operations center. Otherwise, the operations center instance fails to restart after the upgrade and an Invalid kind error is returned.

    For more information, refer to Creating a CasC bundle for the operations center.

The cloudbees-casc-api plugin can also be removed from the controller and operations center plugins.yaml file.

2.303.2.3 Security release

Released: October 6, 2021

Do not upgrade to this version if either of the following conditions apply to your CloudBees CI or CloudBees Jenkins Platform installation:
  • You use RPM to upgrade your installation, or

  • You use the the trusted folder feature of the CloudBees Folders Plus plugin

CloudBees CI and CloudBees Jenkins Platform version 2.303.2.3 have been released with CloudBees Folders Plus plugin version 3.18, which has an issue that could prevent the instances from starting. Additionally, the RPM install package was not correctly configured. If you used it to upgrade, it could cause the operations center and client controllers to start as a new instance.

Please use version 2.303.2.5 instead of 2.303.2.3.

2.289.3.2 Security release 1 revision

Released: July 28, 2021

Removal of Apache Commons Digester from Jenkins Core

CloudBees recommends that you start to prepare for the August release of Jenkins LTS as soon as possible. The August release will include a change that removes the Apache Commons Digester from Jenkins Core. If you use Jenkins LTS plugins that are not in the CloudBees Assurance Program (CAP), you should update them before upgrading your CloudBees products to ensure compatibility with the August release. If your company uses its own proprietary (non-CloudBees) plugins, CloudBees recommends that you test them against Jenkins version 2.302+ prior to the August release. As always, backing up your data before upgrading is strongly encouraged. For details about this change and a list of impacted plugins, please see our knowledge base article Commons Digester Library Removal.

2.289.2.2 Security release

Issues with RPM installation for CloudBees CI on traditional platforms customers with custom users - Latest update: 2021-07-09

The RPM-based installation for version 2.289.2.2 is failing for some CloudBees CI on traditional platforms customers with custom users. You may receive the following error:

main process exited, code=exited, status=6/NOTCONFIGURED

This issue has been resolved in version 2.289.2.3. CloudBees recommends that you install version 2.289.2.3 instead of version 2.289.2.2 to avoid potential issues.

If you attempted to upgrade to version 2.289.2.2 and encountered issues, refer to this knowledge base article or contact CloudBees Support.

Remove the jquery and jquery-detached plugins from your CloudBees CI instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees CI instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees CI instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: June 30, 2021

v2.289.1.2 Security release

Exception occurs in Jetty client on CloudBees CI on traditional platforms when long files are read using SSL

When large HTTP requests are submitted while the built-in Winstone/Jetty container is configured to use SSL/TLS connections, the following exception can occur:

Encrypted buffer max length exceeded

This exception could prevent you from configuring controllers.

This issue is resolved in versions 2.277.4.4 and 2.289.2.2. If you encounter this error, you should upgrade to one of those versions as soon as possible.

Remove the jquery and jquery-detached plugins from your CloudBees CI instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees CI instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees CI instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: June 2, 2021

v2.277.4.4

Remove the jquery and jquery-detached plugins from your CloudBees CI instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees CI instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees CI instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: July 2, 2021

v2.277.4.3 Security release

Exception occurs in Jetty client on CloudBees CI on traditional platforms when long files are read using SSL

When large HTTP requests are submitted while the built-in Winstone/Jetty container is configured to use SSL/TLS connections, the following exception can occur:

Encrypted buffer max length exceeded

This exception could prevent you from configuring controllers.

This issue is resolved in versions 2.277.4.4 and 2.289.2.2. If you encounter this error, you should upgrade to one of those versions as soon as possible.

Remove the jquery and jquery-detached plugins from your CloudBees CI instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees CI instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees CI instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: May 11, 2021

v2.277.4.2 Security release

Remove the jquery and jquery-detached plugins from your CloudBees CI instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees CI instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees CI instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: May 5, 2021

v2.277.3.1

Released: April 20, 2021 Security release 2 revisions

v2.277.2.3

Released: April 7, 2021 Security release 1 revision

v2.277.1.2

The setup wizard shows after updating an instance to 2.777.1.x

Issue

After updating an instance, the setup wizard is displayed.

Jenkins 2.277.1 removes the Upgrade Wizard that was no longer operational after Jenkins 2.0. This caused a regression for instances created before 2.4/2.7.1 LTS.

At the time of this writing, no fix is available for this issue.

Workaround

See the Jenkins upgrade guide for a workaround for this issue. On subsequent restarts, the setup wizard will no longer appear.

Important updates in the March release

The March release includes important updates. If you use Jenkins LTS plugins that are not in the CloudBees Assurance Program (CAP), you should update them before upgrading your CloudBees products to ensure compatibility with the March release. If your company uses its own proprietary (non-CloudBees) plugins, CloudBees recommends that you test them against Jenkins version 2.277.1 prior to updating your CloudBees products. And, as always, backing up your data before upgrading is strongly encouraged.

For details about changes in the March Jenkins LTS release, see:

Remove the jquery and jquery-detached plugins from your CloudBees Jenkins Platform instance

The jquery and jquery-detached plugins have been removed from all CloudBees Jenkins-based products and are no longer part of CloudBees Assurance Program. However, these plugins are not automatically uninstalled from your CloudBees Jenkins Platform instance as other plugins you use may still have dependencies on them. Please ensure that your CloudBees Jenkins Platform instance does not have any dependencies on these plugins, and then remove them. For instructions on how to check for dependencies in a particular plugin, refer to How to determine if a plugin is in use.

Released: March 11, 2021 Security release 2 revisions

v2.263.4.1

Released: February 11, 2021 Security release 1 revision

v2.263.2.3

User-created content regressions

Version 2.263.2.3 fixes some critical regressions found in version 2.263.2.2 of the following products:

  • CloudBees CI

  • CloudBees Jenkins Distribution

  • CloudBees Jenkins Platform

  • CloudBees Jenkins Enterprise

Potential issues include:

  • If you use external artifact storage, it is not possible to download entire directories of archived artifacts as Zip files.

  • Zip files containing directories of workspaces, archived artifacts, and similar user-created content are missing top-level directories.

  • File handles are not closed directly whenever individual files are downloaded from workspaces, archived artifacts, and other user-created content. This could result in Jenkins running out of file handles.

CloudBees recommends that you upgrade to version 2.263.2.3 to prevent potential issues with user-created content.

Released: January 21, 2021 Security release