From c9d2ec1dcb797b3494a38a74d0cfc9fdc07a0f5f Mon Sep 17 00:00:00 2001
From: Prudhvi Godithi <pgodithi@amazon.com>
Date: Thu, 7 Jul 2022 14:44:13 -0400
Subject: [PATCH] CVE's Fix for Jenkins #2280 #2272 #2239 #1962 (#2303)

* Change ref to 2.1 for opensearch dahsboards (#2267)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

versionincrement.yaml matrix test

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

Add test manifest to check build job (#2273)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Set concurrent build limit for gradle check (#2274)

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

Add test coverage xml and support 1.x gradle check (#2279)

* Add test coverage xml and support 1.x gradle check

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Remove comments

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

Add java args to 2.2.0 manifest (#2281)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Update downloadFromS3 lib env vars with credentials (#2278)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Update buildUploadManifestSHA lib env vars with credentials (#2277)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Update signArtifacts lib env vars with credentials (#2275)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

[OSD][2.1] add functional test repo (#2282)

Signed-off-by: Kawika Avilla <kavilla414@gmail.com>

Change codecov xml name and move gradle check script to build repo (#2283)

* Change codecov xml name and move gradle check script to build repo

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Add tests

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Tweak tokens

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Tweak jenkins codeCoverage.xml

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

* Add codeCoverage.xml

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

Add gradle cleanup before the checks (#2285)

Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>

Update promoteArtifactsLib lib env vars with credentials (#2284)

* Resolve merge conflicts

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Update remaining env vars with credentials in jenkins libraries  (#2286)

* Update getManifestSHA lib env vars with credentials

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

Remove 2.1.0 from cron for building release candidates (#2287)

Signed-off-by: Sayali Gaikawad <gaiksaya@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test versionmatrixtest.yaml

Signed-off-by: pgodithi <pgodithi@amazon.com>

test version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

test version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Staging version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Staging version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

Staging version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* Version increment automation

Signed-off-by: pgodithi <pgodithi@amazon.com>

* vulnerabilitiesfix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* vulnerabilitiesfix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* CVE fix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* CVE's: CVE-2021-30129 sshd-core-2.5.1.jar fix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* CVE's: CVE-2021-30129 sshd-core-2.5.1.jar fix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* CVE fix

Signed-off-by: pgodithi <pgodithi@amazon.com>

* CVE fix

Signed-off-by: pgodithi <pgodithi@amazon.com>

Co-authored-by: Sayali Gaikawad <61760125+gaiksaya@users.noreply.github.com>
---
 build.gradle | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/build.gradle b/build.gradle
index 866c181b04..3ae3214011 100644
--- a/build.gradle
+++ b/build.gradle
@@ -69,19 +69,19 @@ sourceSets {
 }
 
 sharedLibrary {
-    coreVersion = '2.355' // https://mvnrepository.com/artifact/org.jenkins-ci.main/jenkins-core?repo=jenkins-releases
+    coreVersion = '2.358' // https://repo.jenkins-ci.org/public/org/jenkins-ci/main/jenkins-core/
     testHarnessVersion = '1736.vc72c458c5103' // https://mvnrepository.com/artifact/org.jenkins-ci.main/jenkins-test-harness?repo=jenkins-releases
     pluginDependencies {
-        workflowCpsGlobalLibraryPluginVersion = '2.21.3' // https://mvnrepository.com/artifact/org.jenkins-ci.plugins.workflow/workflow-cps-global-lib?repo=jenkins-releases
+        workflowCpsGlobalLibraryPluginVersion = '570.v21311f4951f8' // https://repo.jenkins-ci.org/public/org/jenkins-ci/plugins/workflow/workflow-cps-global-lib/
         // see https://mvnrepository.com/artifact/org.jenkins-ci.plugins/<name>?repo=jenkins-releases for latest
         dependency('org.jenkins-ci.plugins.workflow', 'workflow-cps', '2.94.1')
         dependency('org.jenkins-ci.plugins.workflow', 'workflow-multibranch', '2.26.1')
-        dependency('org.jenkins-ci.plugins', 'pipeline-input-step', '2.12')
+        dependency('org.jenkins-ci.plugins', 'pipeline-input-step', '449.v77f0e8b_845c4') // https://repo.jenkins-ci.org/public/org/jenkins-ci/plugins/pipeline-input-step/
         dependency('org.jenkins-ci.plugins', 'script-security', '1172.v35f6a_0b_8207e')
         dependency('org.jenkins-ci.plugins', 'credentials', '1112.vc87b_7a_3597f6')
         dependency('org.jenkins-ci.plugins', 'git-client', '3.10.1')
         dependency('org.jenkins-ci.plugins', 'junit', '1.55')
-        dependency('org.jenkins-ci.plugins', 'mailer', '1.34.2')
+        dependency('org.jenkins-ci.plugins', 'mailer', '408.vd726a_1130320') // https://repo.jenkins-ci.org/public/org/jenkins-ci/plugins/mailer/
     }
 }