Upgrade Notes

Hazelcast upgrade from 5.6.0 to 5.7.0

The Hazelcast library used for peer-to-peer communications in High Availability (HA) controllers has been upgraded from version 5.6.0 to 5.7.0. Since Hazelcast Community Edition does not support members of different minor versions sharing a cluster, a regular rolling upgrade across this change is not possible. If you are running an HA controller on any previous version, the upgrade should be automatic, although there will be a temporary outage, similar to upgrading a non-HA controller.


Blue Ocean and team controllers end-of-life for CloudBees CI on modern cloud platforms

Starting with this release, Blue Ocean and Team controllers have reached end-of-life (EOL) and are no longer supported. Blue Ocean and Team controllers will not receive future updates, security patches, or technical support and have been removed from the CloudBees Assurance Program (CAP).

What this means for you:

  • Team controllers no longer function.

  • Blue Ocean may continue to work, but is no longer supported by CloudBees.

  • Technical support for Blue Ocean and Team controllers is no longer available.

CloudBees strongly encourages all customers to complete their migration away from Team controllers to ensure uninterrupted service. For detailed migration guidance, please refer to Migrate team controllers to managed controllers using Move/Copy/Promote or In-place conversion of team controllers to managed controllers. If you have questions or need assistance, please contact CloudBees Support.


Proprietary, Compatible, and Verified plugin badges replaced by Supported

CloudBees CI plugins were previously labeled in the plugin manager with one of three badges: Proprietary (Tier 1), Verified (Tier 1), and Compatible (Tier 2). These have been consolidated into a single Supported badge. Plugins that previously displayed no badge remain unlabeled and are not supported by CloudBees. The setup wizard no longer categorizes plugins individually. If a plugin is shown in the setup wizard, it is supported.


Dependency updates on several plugins

A number of unnecessary or unused plugin dependencies have been removed or made optional to reduce unnecessary coupling between plugins and allow for more flexible installations:

  • The Controller Provisioning Kubernetes plugin (master-provisioning-kubernetes) no longer depends on the OkHttp API plugin (okhttp-api), Docker Commons plugin (docker-commons), Metrics plugin (metrics), Pipeline: API plugin (workflow-api), or the Operations Center Monitoring plugin (operations-center-monitoring).

  • The dependency from the Operations Center Server Cluster Operations plugin (operations-center-clusterops) to the CloudBees Backup plugin (infradna-backup) is now optional.

  • The dependencies from the Operations Center Server Cluster Operations plugin (operations-center-clusterops) to the CloudBees Update Center plugin (cloudbees-update-center-plugin) and the Operations Center Update Center plugin (operations-center-updatecenter) are now optional.

  • The Operations Center Server EC2 Cloud plugin (operations-center-ec2-cloud) no longer depends on the Credentials Binding plugin (credentials-binding).

  • The CloudBees HashiCorp Vault plugin (cloudbees-hashicorp-vault) no longer depends on the Credentials Binding plugin (credentials-binding), including indirect dependencies via the AWS Credentials plugin (aws-credentials) or the Git plugin (git).

  • The CloudBees CasC Items Commons plugin (cloudbees-casc-items-commons) no longer depends on the Credentials Binding plugin (credentials-binding).

  • The dependency from the Operations Center Server plugin (operations-center-server) to the CloudBees Monitoring plugin (cloudbees-monitoring) is now optional.

  • The dependency from the CloudBees Software Delivery Automation UI plugin (cloudbees-unified-ui) to the CloudBees Software Delivery Automation Common plugin (cloudbees-platform-common) is now optional, allowing the CloudBees Software Delivery Automation Common plugin to be disabled when CloudBees Software Delivery Automation is not in use without affecting the CloudBees navigation.


Operations center CloudBees Assurance Program plugin changes since 2.555.3.36985

The following plugins have been removed from the operations center CloudBees Assurance Program since 2.555.3.36985:

  • CloudBees Blue Ocean Default Theme (cloudbees-blueocean-default-theme)

  • Common API for Blue Ocean (blueocean-commons)

  • REST API for Blue Ocean (blueocean-rest)

  • Google Cloud Platform SDK :: Storage (gcp-java-sdk-storage)

  • Docker Commons Plugin (docker-commons)

  • Jenkins Pub-Sub "light" Bus (pubsub-light)

  • Server Sent Events (SSE) Gateway Plugin (sse-gateway)


Controller CloudBees Assurance Program plugin changes since 2.555.3.36985

The following plugins have been removed from the controller CloudBees Assurance Program since 2.555.3.36985:

  • CloudBees Blue Ocean Default Theme (cloudbees-blueocean-default-theme)

  • CloudBees Update Center Data API (cloudbees-uc-data-api)

  • Blue Ocean (blueocean)

  • Bitbucket Pipeline for Blue Ocean (blueocean-bitbucket-pipeline)

  • Common API for Blue Ocean (blueocean-commons)

  • Config API for Blue Ocean (blueocean-config)

  • Blue Ocean Core JS (blueocean-core-js)

  • Dashboard for Blue Ocean (blueocean-dashboard)

  • Events API for Blue Ocean (blueocean-events)

  • Git Pipeline for Blue Ocean (blueocean-git-pipeline)

  • GitHub Pipeline for Blue Ocean (blueocean-github-pipeline)

  • i18n for Blue Ocean (blueocean-i18n)

  • JWT for Blue Ocean (blueocean-jwt)

  • Personalization for Blue Ocean (blueocean-personalization)

  • Pipeline implementation for Blue Ocean (blueocean-pipeline-api-impl)

  • Blue Ocean Pipeline Editor (blueocean-pipeline-editor)

  • Pipeline SCM API for Blue Ocean (blueocean-pipeline-scm-api)

  • REST API for Blue Ocean (blueocean-rest)

  • REST Implementation for Blue Ocean (blueocean-rest-impl)

  • Web for Blue Ocean (blueocean-web)

  • Jenkins Design Language (jenkins-design-language)

  • Display URL for Blue Ocean (blueocean-display-url)

  • Jenkins Pub-Sub "light" Bus (pubsub-light)

  • Server Sent Events (SSE) Gateway Plugin (sse-gateway)


New Features

None.

Feature Enhancements

Support for custom labels on GCE agent VMs

You can now set custom Google Cloud Platform (GCP) resource labels on provisioned agent VMs. Labels are useful for cost allocation, filtering, and policy enforcement in GCP. Configure via the UI or Configuration as Code. Label values must be single words with no spaces and a maximum of 63 characters; GCP rejects invalid values at instance-creation time.


Fallback options for ZONE_RESOURCE_POOL_EXHAUSTED errors

Previously, if a zone encountered a capacity exhaustion error, the only option was to wait and retry. The Google Compute Engine plugin (google-compute-engine) now supports fallback options when a zone on Google Cloud Platform (GCP) encounters capacity exhaustion, using a zone cooldown period to manage the transition. You can configure the fallbackZones option within an instance configuration to specify fallback zones. Additionally, if multiple instance configurations or clouds are available, the plugin falls back to instance configurations within the same cloud before trying another cloud. Refer to Google Compute Engine: Capacity Fallback for more information.


Administrative monitor added for the CloudBees Software Delivery Automation Data plugin in High Availability (HA) controllers

When the CloudBees Software Delivery Automation Data Plugin (cloudbees-platform-data) is installed on a High Availability (HA) controller, it triggers additional saves of build objects after build completion, causing unnecessary replication traffic. A new administrative monitor now warns you when this plugin is detected and provides an uninstall action. Refer to HA considerations for more information on plugins that are incompatible with HA.


Added branch and pullRequest filtering to the exportSonarQubeScan Pipeline step

The exportSonarQubeScan Pipeline step now accepts two new optional parameters, branch and pullRequest, allowing you to filter SonarQube issues and hotspots to a specific branch or pull request.


Removed HA-specific administrative monitor for Blue Ocean

Because Blue Ocean is no longer in the CloudBees Assurance Program, there is no longer a need for a dedicated administrative monitor in High Availability (HA) controllers highlighting that some Blue Ocean functions do not work consistently across replicas. This information remains in the documentation, along with information about other non-CAP plugins.

Resolved Issues

Speed up writeCache uploads to Google Cloud Storage

The streaming pipe buffer used by writeCache has been increased from the previous Java default of 1 KB to 1 MB, so uploads to a Google Cloud Storage backend are no longer limited by the producer-to-consumer handoff, closing the ~2x gap with the native gcloud CLI. You can increase the pipe buffer size using the com.cloudbees.cache.compatibility.S3CompatibleCacheWriter.PIPE_BUFFER_SIZE_BYTES system property.


HTTP proxy support for license telemetry

The CloudBees License Tracker plugin (cloudbees-license-tracker) now uses the Jenkins HTTP proxy configuration when sending User License Counting (ULC) telemetry data to Segment.


Roles  Who am I? page did not display group membership

Previously, the Roles  Who am I? page did not display group membership for the signed-in user. Group membership now displays correctly.


OutOfMemoryError when emailing build log as attachment

Enabling attachBuildLog on builds with large console output no longer causes an OutOfMemoryError.


Some API plugins made optional

A number of plugins which solely provided APIs to other plugins were incorrectly listed as mandatory in the plugin lists for operations center and/or controllers when the usages were solely in optional plugins. The API plugins themselves have now been made optional, so they will not be installed in new servers unless requested by another plugin. If unused, they can be uninstalled.


Removed redundant entries from setup wizard

In certain cases, the setup wizard offers plugins which were defined in bootstrap scope for the server, meaning they were already installed by the time the setup wizard ran, so it was misleading to then offer to install them. In other cases, plugins which are used solely as APIs for other plugins were offered; these will be installed if, and only if, certain plugins are selected for installation.

Known Issues

git-lfs removed from the default Linux agent image

Starting with the September or October 2026 CloudBees CI release, the default CloudBees CI Linux agent image will no longer include git-lfs. This change addresses frequent false-positive vulnerability scan findings caused by git-lfs in the default image.

Who is affected:

  • Linux agent users whose pipelines depend on git-lfs (for example, to pull or push Git LFS-tracked assets).

  • Windows agent images are not affected.

  • No action is required if your pipelines do not use git-lfs.

How to prepare:

  • Identify whether any of your pipelines depend on git-lfs.

  • If you need git-lfs, you will need to opt into an alternative image when the change ships. Instructions will be provided in the release documentation.


Java 25 becomes the default runtime for CloudBees CI Docker images

Starting with the October 2026 release, all CloudBees CI Docker images without a suffix will use Java 25 as the default runtime (equivalent to using the -jdk25 suffix). A Java 21 fallback image will remain available if you are not yet ready to migrate (equivalent to using the -jdk21 suffix). No action is required before the October 2026 release, but you should review your Java version requirements ahead of the upgrade. An administrative monitor has been added to notify you of this upcoming change.


Duplicate plugins in the Operations center Plugin Manager UI

When you search for a specific plugin under the Available tab in the Operations center Plugin Manager, the search results show duplicate entries for the plugin.