Merge branch 'master' into check-inline-js

Author: mawinter69

.github/renovate.json

@@ -10,18 +10,6 @@
   ],
   "automerge": true,
   "customManagers": [
-    {
-      "customType": "regex",
-      "managerFilePatterns": [
-        "/pct.sh/"
-      ],
-      "matchStrings": [
-        "JTH_VERSION=(?<currentValue>.*?)\\n"
-      ],
-      "depNameTemplate": "org.jenkins-ci.main:jenkins-test-harness",
-      "datasourceTemplate": "maven",
-      "registryUrlTemplate": "https://repo.jenkins-ci.org/releases/"
-    },
     {
       "customType": "regex",
       "managerFilePatterns": [

Jenkinsfile

@@ -1,7 +1,6 @@
 // Do not trigger build regularly on change requests as it costs a lot
 String cronTrigger = ''
 if(env.BRANCH_NAME == "master") {
-  cronTrigger = '00 09 * * 5'
 }
 
 properties([
@@ -76,17 +75,13 @@ stage('prep') {
   mavenEnv(jdk: 21) {
     checkout scm
     withEnv(['SAMPLE_PLUGIN_OPTS=-Dset.changelist']) {
-      withCredentials([
-        usernamePassword(credentialsId: 'app-ci.jenkins.io', usernameVariable: 'GITHUB_APP', passwordVariable: 'GITHUB_OAUTH')
-      ]) {
-        sh '''
-        mvn -v
-        echo "Starting artifact caching proxy pre-heat"
-        mvn -ntp dependency:go-offline
-        echo "Finished artifact caching proxy pre-heat"
-        bash prep.sh
-        '''
-      }
+      sh '''
+      mvn -v
+      echo "Starting artifact caching proxy pre-heat"
+      mvn -ntp dependency:go-offline
+      echo "Finished artifact caching proxy pre-heat"
+      bash prep.sh
+      '''
     }
     fullTestMarkerFile = fileExists 'full-test'
     weeklyTestMarkerFile = fileExists 'weekly-test'
@@ -96,17 +91,6 @@ stage('prep') {
 
       lines = readFile('lines.txt').split('\n')
       lines = [lines[0], lines[-1]] // Save resources by running PCT only on newest and oldest lines
-      withCredentials([string(credentialsId: 'launchable-jenkins-bom', variable: 'LAUNCHABLE_TOKEN')]) {
-        lines.each { line ->
-          def commitHashes = readFile "commit-hashes-${line}.txt"
-          sh "launchable verify && launchable record build --name ${env.BUILD_TAG}-${line} --no-commit-collection " + commitHashes
-
-          def sessionFile = "launchable-session-${line}.txt"
-          def jdk = line == 'weekly' ? 21 : 17
-          sh "launchable record session --build ${env.BUILD_TAG}-${line} --flavor platform=linux --flavor jdk=${jdk} >${sessionFile}"
-          stash name: sessionFile, includes: sessionFile
-        }
-      }
     }
     lines.each { line ->
       stash name: line, includes: "pct.sh,excludes.txt,target/pct.jar,target/megawar-${line}.war"
@@ -140,12 +124,6 @@ if (BRANCH_NAME == 'master' || fullTestMarkerFile || weeklyTestMarkerFile || env
             bash pct.sh
             '''
           }
-          withCredentials([string(credentialsId: 'launchable-jenkins-bom', variable: 'LAUNCHABLE_TOKEN')]) {
-            def sessionFile = "launchable-session-${line}.txt"
-            unstash sessionFile
-            def session = readFile(sessionFile).trim()
-            sh "launchable verify && launchable record tests --session ${session} --group ${repository} maven './**/target/surefire-reports' './**/target/failsafe-reports'"
-          }
         }
       }
     }

RELEASING.md

@@ -9,16 +9,16 @@ Details are described in [a week in the life of a BOM release manager](#a-week-i
 
 | Release Date | Lead                 |
 |--------------| -------------------- |
-| 2025-11-14   | Bruno Verachten      |
-| 2025-11-21   | Bruno Verachten      |
-| 2025-11-28   | Mark Waite           |
-| 2025-12-05   | Mark Waite           |
-| 2025-12-12   | Darin Pope           |
-| 2025-12-19   | Darin Pope           |
-| 2025-12-26   | Adrien Lecharpentier |
-| 2026-01-02   | Adrien Lecharpentier |
-| 2026-01-09   | Kris Stern           |
+| 2025-01-02   | Adrien Lecharpentier |
+| 2026-01-09   | Adrien Lecharpentier |
 | 2026-01-16   | Kris Stern           |
+| 2026-01-23   | Kris Stern           |
+| 2026-01-30   | Bruno Verachten      |
+| 2026-02-06   | Bruno Verachten      |
+| 2026-02-13   | Mark Waite           |
+| 2026-02-20   | Mark Waite           |
+| 2026-02-27   | Darin Pope           |
+| 2026-03-06   | Darin Pope           |
 
 ## Releasing the BOM
 
@@ -86,6 +86,116 @@ Then you can work on the PR. Once done, push your changes back to the PR. If eve
 
 There are some known issues that commonly need to be addressed by the BOM release manager.
 
+##### Handling Rollbacks
+
+Sometimes a dependency update that was merged and released causes compatibility issues or test failures that are discovered before the BOM release. When this happens, a rollback process is needed to temporarily revert the problematic change while the issue is investigated and resolved.
+
+###### When to Consider a Rollback
+
+A dependency update should be reverted when it results in persistent test failures in the plugin BOM.  It is even better if the persistent test failure can be fixed by updating to a newer version of the dependency that fixes the test failure.
+
+###### Rollback Process
+
+When a problematic dependency update needs to be rolled back, follow these steps:
+
+1. Notify the Author
+
+**Notify the author of the problematic change as close as possible to the actual problem area.** Leave a comment on the original PR or commit that introduced the issue, explaining the specific problems encountered.
+
+Where possible, provide an example that the plugin developer can use to see the problem from within the plugin repository.  Most plugin developers are not familiar with maintaining the plugin BOM, so they will struggle with using the plugin BOM repository to duplicate the problem.  A plugin developer is more likely to resolve a problem when they can see it with `mvn clean verify` in their plugin repository.
+
+**Example:**
+```
+Looks like these changes are causing issues with doing a BOM release
+this week. For reference:
+
+tl;dr...two plugins that passed on the Tuesday weekly-test (foo-plugin
+and bar-plugin) are now failing.
+
+For the moment so I can get the BOM release out today, I'm going to
+revert the PR that put in github-branch-source 1844.v4a_9883d49126.
+
+The local BOM commands I'm running that are failing are:
+- `LINE=weekly PLUGINS=bar-plugin bash local-test.sh`
+- `LINE=weekly PLUGINS=foo-plugin bash local-test.sh`
+
+As noted, when I locally go back to github-branch-source
+1834.v857721ea_74c6 both tests are passing.
+```
+
+**Reference:** See [this example notification](https://github.com/jenkinsci/github-branch-source-plugin/pull/822#issuecomment-3238052920) to the plugin author.
+
+2. Revert the Change
+
+Create a revert commit that rolls back the problematic dependency update. In the commit message and the pull request description, include a link to the notification that was sent to the author.
+
+**Example commit message:**
+```
+Revert "chore(deps): bump github-branch-source to 1844.v4a_9883d49126 in /bom-weekly"
+
+Rolling back due to compatibility issues with downstream plugins.
+See notification to author: https://github.com/jenkinsci/github-branch-source-plugin/pull/822#issuecomment-3238052920
+```
+
+3. Trigger Dependabot
+
+Comment `@dependabot rebase` on the reverted PR to trigger Dependabot to reprocess the change.
+
+4. Disable Automerge
+
+Disable automerge for the PR to prevent it from being automatically merged again while the issue is being investigated.
+
+5. Request Changes Review
+
+- Click on **"Files changed"** tab in the PR
+- Click **"Review changes"**
+- Select **"Request changes"**
+- Add a comment explaining why changes are requested (reference the compatibility issues)
+- Click **"Submit review"**
+
+6. Add `weekly-test` Label
+
+Add the `weekly-test` label to the PR to ensure it gets additional testing before being considered for merge again.
+
+7. Leave the PR Open
+
+Do not close the PR. Leave it open so that:
+- The issue remains visible and can be tracked
+- The author can address the compatibility issues
+- Testing can be re-run once fixes are implemented
+
+8. Convert to Draft
+
+Convert the PR to draft status by clicking the **"Convert to draft"** link at the bottom of the Reviewers block. This signals that the PR is not ready for merge.
+
+###### Example Rollback
+
+For a complete example of this rollback process in action, see [BOM PR #5611](https://github.com/jenkinsci/bom/pull/5611), which demonstrates:
+
+- Author notification with specific failure details
+- Revert commit with reference to the notification
+- PR converted to draft status
+- Changes requested with clear explanation
+- `weekly-test` label applied
+- Automerge disabled
+
+###### After the Rollback
+
+Once the rollback is complete:
+
+1. **Monitor the Issue**: Keep track of whether the author addresses the compatibility problems
+2. **Re-test When Ready**: Once fixes are implemented, the PR can be converted back from draft and re-tested
+3. **Coordinate Release**: Ensure the fixed version is properly tested before including it in the next BOM release
+
+###### Communication
+
+When performing rollbacks:
+
+- Be clear and specific about the issues encountered
+- Provide helpful details like failing tests or error messages
+- Reference specific versions that work vs. versions that fail
+- Be respectful and collaborative - rollbacks are about maintaining stability, not blame
+
 ##### Dependency requires Jenkins 2.xxx.y or higher
 
 This message shows that a plugin requires a newer Jenkins LTS than one or more of the LTS lines supported by the BOM. Pin the older version to the correct LTS line to resolve the issue.  Some pull requests that pin older plugin versions include:
@@ -132,7 +242,7 @@ Alternatively, you can call them from wherever you want, just know that they are
 * on the newly created issue, manually set `Type` to `Task`
   * at the time of writing (2024-10-14), there is no `gh` option to set the Type
 * check the CRON expression to see if the pre-release build will be executed at a time suited for you
-  * this can also be used to change when the release happened if you prefer the release to be made on thurday
+  * this can also be used to change when the release happened if you prefer the release to be made on Thursday
   * run `./bom-release-issue-complete-task.sh 1`
 * Locally run tests for `warnings-ng` for all current LINEs and weekly
   * `./bom-test-all-lines.sh warnings-ng`

bom-2.504.x/pom.xml

@@ -120,11 +120,31 @@
         <artifactId>warnings-ng</artifactId>
         <version>12.9783.ve1cb_9f060738</version>
       </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>azure-keyvault</artifactId>
+        <version>327.v3f37dc30312a_</version>
+      </dependency>
       <dependency>
         <groupId>org.jenkins-ci.plugins</groupId>
         <artifactId>azure-vm-agents</artifactId>
         <version>1050.v45467b_03322a_</version>
       </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>badge</artifactId>
+        <version>2.12</version>
+      </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>build-timeout</artifactId>
+        <version>1.38</version>
+      </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>gitlab-plugin</artifactId>
+        <version>1.9.12</version>
+      </dependency>
       <dependency>
         <groupId>org.jenkins-ci.plugins</groupId>
         <artifactId>ldap</artifactId>

bom-2.516.x/pom.xml

@@ -20,6 +20,11 @@
         <type>pom</type>
         <scope>import</scope>
       </dependency>
+      <dependency>
+        <groupId>io.jenkins.plugins</groupId>
+        <artifactId>gitea-checks</artifactId>
+        <version>601.607.vcea_0049b_27e5</version>
+      </dependency>
       <dependency>
         <groupId>org.jenkins-ci.plugins</groupId>
         <artifactId>cloudbees-folder</artifactId>

bom-2.528.x/pom.xml

@@ -21,11 +21,36 @@
         <type>pom</type>
         <scope>import</scope>
       </dependency>
+      <dependency>
+        <groupId>io.jenkins.plugins</groupId>
+        <artifactId>custom-folder-icon</artifactId>
+        <version>2.21</version>
+      </dependency>
+      <dependency>
+        <groupId>io.jenkins.plugins</groupId>
+        <artifactId>customizable-header</artifactId>
+        <version>250.vdb_c6dcb_5c515</version>
+      </dependency>
+      <dependency>
+        <groupId>io.jenkins.plugins</groupId>
+        <artifactId>design-library</artifactId>
+        <version>403.v0787db_1c972b_</version>
+      </dependency>
+      <dependency>
+        <groupId>io.jenkins.plugins</groupId>
+        <artifactId>mcp-server</artifactId>
+        <version>0.116.v335308141e4e</version>
+      </dependency>
       <dependency>
         <groupId>io.jenkins.plugins</groupId>
         <artifactId>pipeline-graph-view</artifactId>
         <version>661.v6003f4542123</version>
       </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>github-branch-source</artifactId>
+        <version>1917.v9ee8a_39b_3d0d</version>
+      </dependency>
       <dependency>
         <groupId>org.jenkins-ci.plugins</groupId>
         <artifactId>junit</artifactId>
@@ -37,6 +62,11 @@
         <version>${junit-plugin.version}</version>
         <classifier>tests</classifier>
       </dependency>
+      <dependency>
+        <groupId>org.jenkins-ci.plugins</groupId>
+        <artifactId>oic-auth</artifactId>
+        <version>4.609.v9de140f63d01</version>
+      </dependency>
       <dependency>
         <groupId>org.jenkins-ci.plugins.workflow</groupId>
         <artifactId>workflow-api</artifactId>