resources/artifact-ignores.properties

# This file lists artifacts and specific versions of artifacts to hide in update center.
# Possible syntaxes:
# - `artifactId` removes all versions of an artifact from distribution
# - `artifactId-version` removes specific version of an artifact from distribution
# - `artifactId = url` removes all versions of an artifact from distribution, provides deprecation message URL
#   See the header of deprecations.properties for details about deprecation messages.

AntepediaReporter-CI-plugin      # closed-souce plugin; removal confirmed with owner, Guillaume Rousseau
# service discontinued. Alternative: https://plugins.jenkins.io/appetize/
appio = https://github.com/jenkins-infra/update-center2/pull/465
# service discontinued
appthwack = https://wiki.jenkins-ci.org/display/JENKINS/AppThwack+Plugin
# renamed to assembla-auth
assembla-oauth = https://groups.google.com/d/msg/jenkinsci-dev/TVz-D5etsUM/Knx9zXtEnSwJ
assembla-jenkins                 # Renamed to assembla
associated-files-plugin          # renamed to associated-files
# merged into aws-java-sdk-minimal
aws-java-sdk-core     = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540
aws-java-sdk-jmespath = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540
aws-java-sdk-kms      = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540
aws-java-sdk-s3       = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540
aws-java-sdk-sts      = https://github.com/jenkinsci/aws-java-sdk-plugin/pull/540
aws-lambda-jenkins-plugin        # renamed to aws-lambda
aws-lambda-plugin                # renamed to aws-lambda
aws-yum-paramater                # renamed to package-parameter
# deprecated -- https://github.com/jenkinsci/azure-iot-edge-plugin/blob/master/Readme.md
azure-iot-edge = https://github.com/jenkinsci/azure-iot-edge-plugin/blob/master/Readme.md
bart = https://github.com/jenkins-infra/update-center2/pull/658
bees-sdk-plugin                  # removal requested by ndeloof: RUN@cloud service no longer exists
binary-deployer                  # removal requested by alecharp: this plugin was never meant to be deployed. POC project.
# "This plugin is no longer supported and should not be used."
blackduck-installer = https://wiki.jenkins-ci.org/display/JENKINS/Black+Duck+Vulnerability+Installer+Plugin
# End of life.  Replaced with Detect
blackduck-hub = https://github.com/jenkins-infra/update-center2/pull/261
blitz.io-jenkins                 # renamed to blitz_io-jenkins
# service discontinued: https://en.wikipedia.org/wiki/Blitz_(software)
blitz_io-jenkins = https://github.com/jenkins-infra/update-center2/pull/521
# superseded by Extra Columns Plugin
build-node-column = https://wiki.jenkins-ci.org/display/JENKINS/Build+Node+Column+Plugin
# service discontinued: https://github.com/github/github-services/pull/538
buildcoin-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Buildcoin+Plugin
# service discontinued
buildheroes = https://wiki.jenkins-ci.org/display/JENKINS/Buildheroes
# service discontinued -- see https://www.codescan.io for alternative ways of running
codescan = https://github.com/jenkins-infra/update-center2/pull/299
# service shut down
caroline = https://wiki.jenkins-ci.org/display/JENKINS/Caroline+Plugin
ChatRoom                          # junk plugin; developer has been banned
# service discontinued https://www.chromium.org/developers/how-tos/chrome-frame-getting-started
chrome-frame-plugin = https://www.chromium.org/developers/how-tos/chrome-frame-getting-started
# Superseded by Publish Over CIFS Plugin
cifs = https://wiki.jenkins-ci.org/display/JENKINS/CIFS-Publisher+Plugin
# renamed to clang-scanbuild
clang-scanbuild-plugin = https://github.com/jenkinsci/clang-scanbuild-plugin/commit/a6d57b67f6fbd0a9893ecf6436c54ecb670d5829
# service discontinued
cloudbees-deployer-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Cloudbees+Deployer+Plugin
# Unsupported and retracted by service provider
cloudbees-enterprise-plugins = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Jenkins+Enterprise
cloudbees-plugin-gateway = https://github.com/jenkinsci/cloudbees-plugin-gateway/blob/master/README.md
# "This feature is no longer relevant."
cloudbees-registration = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Registration+Plugin
# renamed to cloudbees-disk-usage-simple several years ago
cloudbees-disk-usage-simple-plugin = https://github.com/jenkins-infra/update-center2/pull/179
ColumnPack-plugin                 # renamed to ColumnsPlugin
ConfigurationSlicing              # renamed into configurationslicing, and this double causes a check out problem on Windows
configuration-as-code-support = https://github.com/jenkinsci/configuration-as-code-plugin/releases/tag/configuration-as-code-1.18
convert-to-declarative            # renamed to declarative-pipeline-migration-assistant-plugin
convert-to-declarative-api       # renamed to declarative-pipeline-migration-assistant-plugin
# superseded by ArtifactDeployer Plugin
copyarchiver = https://wiki.jenkins-ci.org/display/JENKINS/CopyArchiver+Plugin
# Incompatible with Hudson 1.355+ and superseded by xUnit Plugin
cppunit = https://wiki.jenkins-ci.org/display/JENKINS/CppUnit+Plugin
create-fingerprint-plugin        # renamed to create-fingerprint
datadog-build-reporter           # renamed to datadog
delphix-plugin                   # renamed to delphix
# temporarily discontinued
delphix = https://github.com/jenkins-infra/update-center2/pull/695
description-column               # renamed to description-column-plugin
discobit-autoconfig = https://github.com/jenkins-infra/update-center2/pull/587
# removal requested by teilo, superceded by dockerhub-notification
dockerhub = https://github.com/jenkins-infra/update-center2/commit/e5a138873113d0e2d6af59d5699215a1835c15b7
drools                           # deprecated
# deprecated -- eggplant-plugin
eggplant-plugin = https://github.com/jenkins-infra/update-center2/pull/578#issuecomment-1073702439
# Superseded by Emotional Jenkins
emotional-hudson = https://wiki.jenkins-ci.org/display/JENKINS/Emotional+Hudson+Plugin
essentials                       # replaced by evergreen
evergreen                        # not supposed to be installed manually. We use Incrementals http://repo.jenkins-ci.org/incrementals/io/jenkins/plugins/evergreen
# deprecated
external-scheduler = https://github.com/jenkins-infra/update-center2/pull/257
fabric-beta-publisher = https://github.com/jenkinsci/fabric-beta-publisher-plugin#deprecation-notice
first-plugin                     # INFRA-1108: Unintended release as part of a plugin tutorial workshop
foofoo                           # junk: contains only the HelloWorldBuilder sample
foreman-node-sharing             # Reimplemented as https://github.com/jenkinsci/node-sharing-plugin/
# superseded by Gerrit Trigger Plugin
gerrit = https://wiki.jenkins-ci.org/display/JENKINS/Gerrit+Plugin
# no... just... no
girls = https://wiki.jenkins-ci.org/display/JENKINS/Girls+Plugin
# service discontinued
gitorious = https://wiki.jenkins-ci.org/display/JENKINS/Gitorious+Plugin
# Google Desktop has been discontinued
google-desktop-gadget = https://wiki.jenkins-ci.org/display/JENKINS/Hudson+Google+Desktop+Gadget
# service discontinued
googlecode = https://wiki.jenkins-ci.org/display/JENKINS/Google+Code+Plugin
groovy-events-listener-plugin-master # unintentional fork of groovy-events-listener-plugin
# service discontinued
hall-jenkins = https://wiki.jenkins-ci.org/display/JENKINS/Hall+Plugin
hello-world                      # people shouldn't actually *publish* the sample project!
HiddenParameter                  # renamed to hidden-parameter
hipchat-plugin                   # renamed to hipchat
# service discontinued
hockeyapp = https://wiki.jenkins.io/display/JENKINS/HockeyApp+Plugin
hpe-network-virtualization = https://support.microfocus.com/kb/kmdoc.php?id=KM03806543
hudson-logaction-plugin          # renamed to logaction-plugin
hudson-startup-trigger           # renamed to startup-trigger-plugin
icon-shim-plugin                 # renamed to icon-shim
integrity                        # renamed to integrity-plugin
incapptic-connect-uploader = https://github.com/jenkins-infra/update-center2/pull/574
# service discontinued
ion-deployer-plugin = https://wiki.jenkins-ci.org/display/JENKINS/iON+Deployer+Plugin
ivy2                             # subsumed into the ivy plugin
# service discontinued
javanet = https://wiki.jenkins-ci.org/display/JENKINS/Java.net+Plugin
# service discontinued
javanet-uploader = https://wiki.jenkins-ci.org/display/JENKINS/java.net+uploader+Plugin
jbehave-hudson-plugin            # renamed to jbehave-jenkins-plugin
jenkins-leiningen                # renamed to leiningen-plugin :'(
# deleted by maintainers
jenkins-tracker = https://issues.jenkins.io/browse/INFRA-1531
jenkinswalldisplay-pom           # renamed to jenkinswalldisplay
# unmaintained
jenkow-activiti-designer = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Activiti+Designer
# unmaintained
jenkow-activiti-explorer = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Activiti+Explorer
# unmaintained
jenkow-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Jenkow+Plugin
jgiven-plugin                    # renamed to jgiven
jmeter                           # renamed to performance
# deprecated
jshint-checkstyle = https://github.com/jenkins-infra/update-center2/pull/21
jslint-checkstyle                # renamed to jshint-checkstyle
# renamed to kanboard, see https://issues.jenkins-ci.org/browse/HOSTING-241?focusedCommentId=280720&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-280720
kanboard-publisher = https://github.com/jenkins-infra/update-center2/pull/94
karotz                           # service discontinued: https://twitter.com/Karotz/status/527852693960658944 -- https://wiki.jenkins-ci.org/display/JENKINS/Karotz+Plugin
kato                             # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Kato+Plugin
kmap-jenkins = https://github.com/jenkins-infra/update-center2/pull/587
koji-plugin                      # renamed to koji
kundo                            # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Kundo+Plugin
lechat                           # renamed to Kata which was discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/LeChat+Plugin
loadrunner                       # closed-source plugin, removal requested by plugin author
# service discontinued
lightstep-incident-response = https://github.com/jenkinsci/lightstep-incident-response-plugin#readme
liverebel-deploy                 # only worked with obsolete releases -- https://wiki.jenkins-ci.org/display/JENKINS/LiveRebel+Plugin
# part of core functionality since 1.433
m2-extra-steps = https://wiki.jenkins-ci.org/display/JENKINS/M2+Extra+Steps+Plugin
# service discontinued
mansion-cloud = https://wiki.jenkins-ci.org/display/JENKINS/CloudBees+Cloud+Connector+Plugin
mber                             # service discontinued -- https://wiki.jenkins.io/display/JENKINS/Mber+Plugin
# superseded by Relution Publisher
mcap-eas-plugin = https://github.com/mwaylabs/jenkins-mcap-eas-plugin
mogotest                         # deprecated: mogotest service no longer exists
# service discontinued
mypeople = https://wiki.jenkins-ci.org/display/JENKINS/MyPeople+Plugin
# service discontinued
nabaztag = https://wiki.jenkins-ci.org/display/JENKINS/Nabaztag+Plugin
# product discontinued
netio-plugin = https://wiki.jenkins-ci.org/display/JENKINS/Netio-Plugin
# superseded by Mail Watcher Plugin
nodeofflinenotification = https://wiki.jenkins-ci.org/display/JENKINS/Node+Offline+Notification+Plugin
# service discontinued
notifo = https://wiki.jenkins-ci.org/display/JENKINS/Notifo+Plugin
octoperf-jenkins-plugin          # released from wrong repository; will be renamed
openstack-plugin                 # renamed to openstack-cloud
# service discontinued
origo-issue-notifier = https://wiki.jenkins-ci.org/display/JENKINS/Origo+Issue+Notifier
osf-builder-suite-xml-linter = https://github.com/jenkins-infra/update-center2/pull/658
otabuilder                       # latest sources at https://github.com/jeslyvarghese/otabuilder-plugin but discontinued due to tool chain discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Over-the-Air+Ad+Hoc+Deployment+Plugin+For+iOS
paaslane                         # renamed to paaslane-estimate
# renamed to extended-security-settings
paranoia = https://github.com/jenkins-infra/update-center2/pull/291
pathignore-plugin                # renamed to pathignore
# plugin obsolete, replaced by https://plugins.jenkins.io/perfecto/
perfectomobile = https://developers.perfectomobile.com/display/PD/Legacy+%7C+Jenkins+plugin
perfectomobile-jenkins           # renamed to perfectomobile
PerfPublisher                    # latest releases use "perfpublisher"
# https://jenkins.io/security/advisory/2017-03-20
pipeline-classpath = https://www.jenkins.io/security/plugins/#suspensions
# Removed by author
pipeline-editor = https://github.com/jenkinsci/pipeline-editor-plugin
# renamed to poll-mailbox-trigger-plugin
poll-mailbox-trigger = https://github.com/jenkins-infra/update-center2/pull/42
# discontinued PoC, use Pretested Integration Plugin instead
pretest-commit = https://wiki.jenkins-ci.org/display/JENKINS/Pretest+Commit+Plugin
# superseded by ClearCase UCM Plugin
PUCM = https://wiki.jenkins-ci.org/display/JENKINS/pucm+plugin
rally-bookkeeper                 # removal requested by Mike Rogers: will be Rally plugin 2.0
rally-update-plugin-1            # renamed to rally-plugin(!)
release-multi-test               # junk: contains only the HelloWorldBuilder sample
release-test                     # junk: contains only the HelloWorldBuilder sample
Relution                         # renamed to relution-publisher
remoting-security-workaround = https://github.com/jenkins-infra/update-center2/pull/680
# superseded by Team Concert Plugin
rtc = https://github.com/jenkins-infra/update-center2/pull/13
sahagin-jenkins-plugin           # renamed to sahagin-plugin
sample                           # junk plugin; developer has been banned
schedule-build-plugin            # renamed to schedule-build
# superseded by Naginator Plugin
schedule-failed-builds = https://wiki.jenkins-ci.org/display/JENKINS/Retry+Failed+Builds+Plugin
# deprecated
scis-ad = https://github.com/jenkins-infra/update-center2/commit/5f3f5ae66ea0e819c27d6d1fed9fdb00781f636c
# renamed shortly after publication for https://github.com/jenkins-infra/repository-permissions-updater/pull/459#issuecomment-334702817
scm-branch-pr-filter = https://issues.jenkins.io/browse/INFRA-1358
script-realm-extended            # fork of a plugin and has since been subsumed -- https://wiki.jenkins-ci.org/display/JENKINS/Script+Security+Realm+Extended
# plugin obsolete, replaced by Gradle-based invocation; depublishing as requested by 'silk' in SECURITY-1521
SCTMExecutor = https://github.com/jenkins-infra/update-center2/pull/324
# superseded by Credentials Binding Plugin
secret = https://wiki.jenkins-ci.org/display/JENKINS/Build+Secret+Plugin
security-no-captcha              # Functionality integrated in Jenkins 1.416 -- https://wiki.jenkins-ci.org/display/JENKINS/Security+No+CAPTCHA
serenitec                        # gbossert asked to remove this plugin
# superseded by envinject
setenv = https://wiki.jenkins-ci.org/display/JENKINS/Setenv+Plugin
skytap-cloud-plugin              # renamed to skytap
sms-notification                 # renamed to sms
# superseded by sonargraph-integration --
sonargraph-plugin = https://github.com/jenkins-infra/update-center2/pull/405
# deprecated (see Sonatype CLM: https://wiki.jenkins-ci.org/x/iYDPAw)
sonatype-ci = https://wiki.jenkins.io/display/JENKINS/63930505
squashtm-publisher                   # removal due to security issue JIRA SECURITY-2525
ssh2easy-plugin                  # removal requested by plugin author, accidental rename
# unused?
tepco = https://wiki.jenkins-ci.org/display/JENKINS/TEPCO+Plugin
# unused?
tepco-epuw = https://wiki.jenkins-ci.org/display/JENKINS/TEPCO+Electric+Power+Usage+Widget
TestExecuter                     # renamed to selected-tests-executor
# service discontinued
testflight = https://wiki.jenkins-ci.org/display/JENKINS/Testflight+Plugin
testproject = https://github.com/jenkins-infra/update-center2/pull/696
TestResultsAnalyzer              # renamed to test-results-analyzer
tusarnotifier                    # superseded by DTKit Plugin with automatic migration -- https://wiki.jenkins-ci.org/display/JENKINS/TusarNotifier
ui-samples-plugin = https://groups.google.com/g/jenkinsci-dev/c/2vGn3t9gZ0Y
uithemes                         # removal requested by tfennelly
upload-artifacts-to-nexus        # renamed, see https://issues.jenkins-ci.org/browse/HOSTING-41?focusedCommentId=250383&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-250383
# Superseded by URLTrigger Plugin
url-change-trigger = https://wiki.jenkins-ci.org/display/JENKINS/URL+Change+Trigger
vagrant-plugin                    # renamed to vagrant, herpderp
# service discontinued --- https://wiki.jenkins-ci.org/display/JENKINS/Vessel+plugin https://groups.google.com/d/msg/jenkinsci-dev/L34eAMMWA5o/-AxtRdGsAAAJ
vessel = https://groups.google.com/d/msg/jenkinsci-dev/L34eAMMWA5o/-AxtRdGsAAAJ
weibo4jenkins                    # renamed to weibo
whitesource = https://docs.mend.io/bundle/unified_agent/page/jenkins_plugin.html
wsnotifier                       # renamed to websocket
# renamed to xltestview-plugin
xltest-plugin = https://github.com/jenkinsci/xltestview-plugin/commit/ea034f9929b520e63b9ce15aed9bdb62354146cf
# superseded by zap
zaproxy = https://wiki.jenkins-ci.org/display/JENKINS/ZAProxy+Plugin
zaproxy-jenkins                  # renamed to zaproxy
zubhium                          # service discontinued -- https://wiki.jenkins-ci.org/display/JENKINS/Zubhium+Plugin

# while https://github.com/jenkinsci/kubernetes-pipeline-plugin/pull/31 is unmerged, disables updates sites
kubernetes-pipeline-steps@1.3
kubernetes-pipeline-devops-steps@1.3
kubernetes-pipeline-aggregator@1.3

# specific releases
active-directory@2.1     		    	 # JENKINS-42739
agc-app-upload@1.0				 # https://github.com/jenkins-infra/helpdesk/issues/2853
BlameSubversion@1.121    		    	 # big number but not the latest release
fortify-on-demand-uploader@1.0 		    	 # removal requested by Ryan Black, plugin wasn't ready for release
gradle@1.27              		    	 # JENKINS-45126
matrix-project@1.2.1     		    	 # also INFRA-250
matrix-project@1.4.1     		    	 # this specific version is excluded for INFRA-250
rebuild@1.2              		    	 # release troubles.. skip these
rebuild@1.3              		    	 # ??
ruby-runtime@0.13        		    	 # JENKINS-37353, JENKINS-37771 and JENKINS-38145
jira@2.5.1               		    	 # JENKINS-48357 - binary compatibility issues
qtest@1.2.0              		    	 # draft release and not the latest release
qtest@1.4.1              		    	 # unexpected release version - latest release is 1.4.2
contrast-continuous-application-security@2.7	 # backwards compatibility issue
hp-application-automation-tools-plugin@5.6  	 # JENKINS-55159 - Dependency issues
google-compute-engine@3.1.0                      # Github issue #85 - Regression
build-name-setter-plugin@2.0.0           # breaks builds when using with build-user-vars-plugin https://github.com/jenkinsci/build-name-setter-plugin/issues/39
hp-application-automation-tools-plugin@6.0.1-beta  	 # unexpected release version - latest release is 5.9
ibm-application-security@1.2.7    # Bug that breaks existing jobs from previous versions

# rogue releases with unknown source
ez-templates@1.0.0
ez-templates@1.0.1
ez-templates@1.0.2
ez-templates@1.0.3
ez-templates@1.0.4
ez-templates@1.0.5
jsontrigger               # not forked to jenkinsci; released without hosting request
build-timeout@1.16-INTEL-1

# broken releases, hpi/jpi does not exist or is not a zip file, resulting in maven errors
accurev@0.6.28
analysis-collector@1.21
capitomcat@0.0.4
config-file-provider@1.5
config-rotator@1.1.10
depgraph-view@0.5.1
ez-templates@1.1
gitlab-plugin@1.0.9
job-dsl@1.33
localization-zh-cn@1.0.0
localization-zh-cn@1.0.5
otabuilder@0.3.2
vncrecorder@1.9
warnings@4.29
warnings@4.30
warnings@4.31
build-pipeline-plugin@1.5.0
sge-cloud-plugin@1.17
gitlab-hook@1.4.1
testodyssey-execution@1.1
bitbucket-build-status-notifier@1.3.2

# Suppress accidental release
checkmarx@8.1.0
cmakebuilder@3.6.3  # should have been version 2.6.3
build-failure-analyzer@2.27.0 # Should have been 1.27.0

# Suppress a release with regression that can delete Groovy scripts (JENKINS-39620)
uno-choice@1.5
uno-choice@1.5.0

# Suppress release while dependent components have not been updated
scm-api@2.0

# Suppress Scala Hello World Plugin (HOSTING-235)
hello-world-scala

# The dependent service is shut down
qualys-api-security

# Suppress sse-gateway 1.14  - it has unsatisfied dependency on pubsub-light 1.5
sse-gateway@1.14

# JENKINS-46130
delivery-pipeline-plugin@1.0.4

# https://jenkins.io/security/advisory/2017-04-10/
AdaptivePlugin                # SECURITY-457
# SECURITY-293
build-flow-plugin = https://www.jenkins.io/security/plugins/#suspensions
cas1                          # SECURITY-491
cvs-tag                       # SECURITY-459
# SECURITY-462
dynamicparameter = https://www.jenkins.io/security/plugins/#suspensions
# SECURITY-458
grails = https://www.jenkins.io/security/plugins/#suspensions
groovyaxis                    # SECURITY-460
reactor-plugin                # SECURITY-487
script-scm                    # SECURITY-461
scriptler@1.0                 # SECURITY-367 etc.
scriptler@1.1                 # SECURITY-367 etc.
scriptler@1.2                 # SECURITY-367 etc.
scriptler@1.3                 # SECURITY-367 etc.
scriptler@1.4                 # SECURITY-367 etc.
scriptler@1.5                 # SECURITY-367 etc.
scriptler@2.0                 # SECURITY-367 etc.
scriptler@2.1                 # SECURITY-367 etc.
scriptler@2.2                 # SECURITY-367 etc.
scriptler@2.2.1               # SECURITY-367 etc.
scriptler@2.3                 # SECURITY-367 etc.
scriptler@2.4                 # SECURITY-367 etc.
scriptler@2.4.1               # SECURITY-367 etc.
scriptler@2.5                 # SECURITY-367 etc.
scriptler@2.5.1               # SECURITY-367 etc.
scriptler@2.6                 # SECURITY-367 etc.
scriptler@2.6.1               # SECURITY-367 etc.
scriptler@2.7                 # SECURITY-367 etc.
scriptler@2.9                 # SECURITY-367 etc.
# SECURITY-456
scripttrigger = https://www.jenkins.io/security/plugins/#suspensions
# SECURITY-298
svn-tag = https://www.jenkins.io/security/plugins/#suspensions
tcl                           # SECURITY-379

# These plugins depend on one or more plugins suspended due to the 2017-04-10 advisory
# depends on build-flow-plugin, buildgraph-view
build-flow-extensions-plugin = https://www.jenkins.io/security/plugins/#suspensions
# depends on build-flow-plugin
build-flow-test-aggregator = https://www.jenkins.io/security/plugins/#suspensions
# depends on build-flow-plugin
build-flow-toolbox-plugin = https://www.jenkins.io/security/plugins/#suspensions
# depends on build-flow-plugin
externalresource-dispatcher = https://groups.google.com/d/msg/jenkinsci-dev/YKfydxnpvyE/mMN7LNBoBgAJ
uno-choice@1.0                # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.1                # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.2                # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.3                # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.4                # While we serve pre-2.7 update sites; depends on scriptler
# uno-choice@1.5 already suspended due to regression
# uno-choice@1.5.0 already suspended due to regression
uno-choice@1.5.1              # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.5.2              # While we serve pre-2.7 update sites; depends on scriptler
uno-choice@1.5.3              # While we serve pre-2.7 update sites; depends on scriptler
# depends on scripttrigger
xtrigger = https://www.jenkins.io/security/plugins/#suspensions


# These plugins implement Groovy scripting in an unsafe way, but are currently unreleased -- so suspend preemptively
groovy-choice-parameter
groovy-script-scheduler
plumber

# https://jenkins.io/security/advisory/2017-10-11/
speaks

# A bad deploy, and maven multi module and no staging means bad bad time
blueocean-rest-impl@1.1.3
blueocean-git-pipeline@1.1.3
blueocean-config@1.1.3
blueocean-personalization@1.1.3
blueocean-rest@1.1.3
blueocean-i18n@1.1.3
blueocean-events@1.1.3
blueocean-commons@1.1.3
blueocean-web@1.1.3
blueocean-pipeline-api-impl@1.1.3
blueocean-dashboard@1.1.3
blueocean-jwt@1.1.3
blueocean-github-pipeline@1.1.3

# https://github.com/jenkins-infra/update-center2/pull/671
blueocean-commons@1.26.1-JDK11TEST
blueocean-core-js@1.26.1-JDK11TEST
blueocean-i18n@1.26.1-JDK11TEST
blueocean-pipeline-scm-api@1.26.1-JDK11TEST
blueocean-rest@1.26.1-JDK11TEST
blueocean-web@1.26.1-JDK11TEST
jenkins-design-language@1.26.1-JDK11TEST

# Core release that forced script-security downgrade in error - JENKINS-48604
jenkins-war@2.96
# Error during codesigning caused bad signature
jenkins-war@2.246
jenkins-war@2.247

# abandoned, superseded by azure-vm-agents, with dependency problem per https://jenkins.io/security/advisory/2018-02-26/#SECURITY-554
azure-slave-plugin

# Plugins not fixed in https://jenkins.io/security/advisory/2018-03-26/
copy-to-slave = https://www.jenkins.io/security/plugins/#suspensions
perforce = https://www.jenkins.io/security/advisory/2018-03-26/#SECURITY-373
# depends on copy-to-slave
build-configurator = https://www.jenkins.io/security/plugins/#suspensions
# depends on copy-to-slave
lsf-cloud = https://www.jenkins.io/security/plugins/#suspensions
# depends on copy-to-slave
sge-cloud-plugin = https://www.jenkins.io/security/plugins/#suspensions
# depends on perforce
reviewboard = https://www.jenkins.io/security/plugins/#suspensions

# Licensing issue, see INFRA-2622
liquibase-runner@1.0.0
liquibase-runner@1.0.1
liquibase-runner@1.0.2
liquibase-runner@1.1.0
liquibase-runner@1.2.0
liquibase-runner@1.2.1
liquibase-runner@1.3.0
liquibase-runner@1.4.2
liquibase-runner@1.4.3
liquibase-runner@1.4.4
liquibase-runner@1.4.5
liquibase-runner@1.4.7

# requested by maintainer in https://github.com/jenkins-infra/update-center2/pull/199
websphere-deployer@1.5.5
websphere-deployer@1.5.6

# requested by maintainer
allure-jenkins-plugin@3.11.0

# JENKINS-53399 - breaks folder configurations badly enough to break permissions, scripted libraries, etc
config-file-provider@3.0

# JENKINS-54073, claimed performance regression as of yet undiagnosed; plus some more minor issues:
workflow-job@2.26

# Requested by Mark Waite https://groups.google.com/d/msg/jenkinsci-dev/9MDl1SWeF0o/cvp3_nzjFAAJ
# mistakenly used -rc suffix thinking it would only be exposed in the experimental update center
git@4.0.0-rc
git-client@3.0.0-rc

# Replaced by the official fortify plugin https://wiki.jenkins.io/display/JENKINS/Fortify+Plugin
fortify360
fortify-cloudscan-jenkins-plugin = https://github.com/jenkinsci/fortify-cloudscan-plugin#deprecation-notice

# Failed shading Snakeyaml, 1.9 has both shaded and direct dependency inside
configuration-as-code@1.9

# Failed release of Google Compute Engine Plugin 3.3.1
google-compute-engine@3.3.1

# https://jenkins.io/security/advisory/2019-08-07/
simple-travis-runner
gcm-notification # maintainer requested, seems the service doesn't exist anymore anyway
xltestview-plugin # apparently the service no longer exists anyway

# upload-pgyer Version 1.32 does not have a complete fix on security-1044: Stored in plain-text file
upload-pgyer@1.32

# https://jenkins.io/security/advisory/2019-09-25/
kubernetes-pipeline-arquillian-steps = https://www.jenkins.io/security/plugins/#suspensions
kubernetes-pipeline-steps = https://www.jenkins.io/security/plugins/#suspensions
# mandatory dependency to the two plugins above
kubernetes-pipeline-aggregator = https://www.jenkins.io/security/plugins/#suspensions

# https://jenkins.io/security/advisory/2019-10-16/
puppet-enterprise-pipeline

# not actively maintained (https://wiki.jenkins.io/display/JENKINS/Veracode+Scanner+Plugin), replaced by official Veracode plugin https://help.veracode.com/reader/PgbNZUD7j8aY7iG~hQZWxQ/yQtYXnlbLA6wsWodLn5zdw
veracode-scanner = https://github.com/jenkins-infra/update-center2/pull/302

# https://issues.jenkins-ci.org/browse/JENKINS-59903 and https://issues.jenkins-ci.org/browse/JENKINS-59907
durable-task@1.31

# https://github.com/jenkinsci/google-compute-engine-plugin/issues/153 and https://github.com/jenkinsci/google-compute-engine-plugin/issues/155
google-compute-engine@4.1.0

# Mistakenly expected "rc" to work the same as beta and alpha
pipeline-model-definition@1.5.0-rc1
pipeline-model-api@1.5.0-rc1
pipeline-model-extensions@1.5.0-rc1
pipeline-stage-tags-metadata@1.5.0-rc1

# INFRA-2347: path too long for update-center2
declarative-pipeline-migration-assistant-plugin

# https://jenkins.io/security/advisory/2020-03-09/
literate
cryptomove

# https://github.com/jenkinsci/configuration-as-code-plugin/issues/1339
configuration-as-code@1.37

# https://github.com/jenkinsci/kubesphere-extension-plugin/pull/4#pullrequestreview-386832816
kubesphere-extension@0.1.0
kubesphere-extension@0.2.0

# sshd module was packaged as hpi at least for a time
sshd@1.0
sshd@1.1
sshd@1.2
# pending completion of JEP-230
instance-identity@3.0
instance-identity@3.0.1
instance-identity@3.1
instance-identity@3.2

# released twice, with different groupIds
selfie-trigger-plugin@1.0

# ambiguous version numbers and released in different groupIds
build-pipeline-plugin@1.0

# ambiguous version numbers - see https://repo.jenkins-ci.org/webapp/#/artifacts/browse/tree/General/releases/appscanstandard-integration/ibm-security-appscanstandard-scanner/1.0 (and 1.0.0)
ibm-security-appscanstandard-scanner@1.0

# ambiguous version numbers - see https://repo.jenkins-ci.org/webapp/#/artifacts/browse/tree/General/releases/com/etas/jenkins/plugins/text-file-operations/1.2 (and 1.2.0)
text-file-operations@1.2

# ambiguous version numbers: 1.0-beta1 is preferred
elastest@1.0.0-beta1

# ambiguous version numbers: 0.1.0-alpha-1 is preferred
git-forensics@0.1-alpha-1

# ambiguous version numbers: Prefer 1.0
sideex@1.0.0

# Released with different groupIds
contrast-continuous-application-security@1.0
dependency-check-jenkins-plugin@1.0.1
diskcheck@0.20

# has both hpi and hpi and they're different (identical contents, different archive checksum)
templating-engine@1.0

# Released twice with different groupIds: https://github.com/jenkinsci/async-http-client-plugin/commits/f306ab3
async-http-client@1.7.2

# suspend plugins that weren't distributed based on Maven index before for consistency
bitbucket-scm-trait-commit-skip@0.2.0
ez-templates@1.0
job-dsl@1.17
lambdatest-automation@1.9
office-365-connector@1.1.2
openshift-sync@1.0.32
testfairy@2.2
urltrigger@0.42
uipath-automation-package@1.0
node-iterator-api@1.5

# Released with different groupIds
aliyun-container-service-deploy@0.1.0
aliyun-container-service-deploy@0.1.1

# re-released with different groupId probably because of 'authentic Jenkins' behavior
threadfix@1.4.3

# The following releases have previously been dropped because we didn't allow releases with non-"jenkins" groupId after than the first release with "jenkins" groupId in the past.
# This was to filter out plugin releases for Hudson that were newer than Jenkins.
# Since we now limit the update center source to repo.jenkins-ci.org/releases, this is not a relevant problem anymore.
# This list exists for consistency only, as these releases were never previously available.
nerrvana-plugin@1.02.03
nerrvana-plugin@1.02.04
nerrvana-plugin@1.02.05
docker-slaves@1.0
docker-slaves@1.0.1
docker-slaves@1.0.2
docker-slaves@1.0.3
job-dsl@1.6
job-dsl@1.7
play-autotest-plugin@0.0.7
clearcase-ucm-plugin@1.4.0
hp-application-automation-tools-plugin@1.1
hp-application-automation-tools-plugin@1.2

# broken link in plugin-versions.json since it's lowercase
testfairy@2.2.5-beta

# missing pom file
lambdatest-automation@1.16

# Non OSI license: These plugins use a custom license (3 clause BSD + 4th clause about trademark use)
ci-with-toad-edge@1.0
ci-with-toad-edge@1.2
ci-with-toad-edge@2.0
ci-with-toad-devops-toolkit

# Depublished as agreed with maintainer after SECURITY-1879 in 2020-06-03 security advisory
play-autotest-plugin = https://github.com/jenkins-infra/update-center2/pull/384

# Depublishing for RCE vulnerability, see https://www.jenkins.io/security/advisory/2020-07-02/#SECURITY-1738
kubernetes-ci = https://www.jenkins.io/security/plugins/#suspensions

# Depublishing for having a dependency on itself, causing JENKINS-63877
tics@1.0
tics@2020.3.0.0
tics@2020.3.0.1
tics@2020.3.0.2
tics@2020.3.0.4
tics@2020.3.0.6

# Depublishing for reflected XSS vulnerability while bringing no real benefits, see https://www.jenkins.io/security/advisory/2020-09-01/#SECURITY-1905
jsgames

# XXE vulnerability in https://www.jenkins.io/security/advisory/2020-10-08/#SECURITY-2097 and the service seems to have been shut down anyway
nerrvana

# Arbitrary file read vulnerability while bringing no real benefits, see https://www.jenkins.io/security/advisory/2020-10-08/#SECURITY-2046
persona = https://www.jenkins.io/security/plugins/#suspensions

# Non-open dependency, see INFRA-2751
tfs = https://issues.jenkins.io/browse/INFRA-2751

# INFRA-2487 -- suspend analysis-core and all plugins with a non-optional dependency on it
analysis-collector = https://issues.jenkins.io/browse/INFRA-2487
analysis-core = https://issues.jenkins.io/browse/INFRA-2487
android-lint = https://issues.jenkins.io/browse/INFRA-2487
ccm = https://issues.jenkins.io/browse/INFRA-2487
CFLint = https://issues.jenkins.io/browse/INFRA-2487
checkstyle = https://issues.jenkins.io/browse/INFRA-2487
ci-game = https://issues.jenkins.io/browse/INFRA-2487
codeclimate-plugin = https://issues.jenkins.io/browse/INFRA-2487
codescanner = https://issues.jenkins.io/browse/INFRA-2487
cpptest = https://issues.jenkins.io/browse/INFRA-2487
DotCi-Plugins-Starter-Pack = https://issues.jenkins.io/browse/INFRA-2487
dry = https://issues.jenkins.io/browse/INFRA-2487
findbugs = https://issues.jenkins.io/browse/INFRA-2487
php = https://issues.jenkins.io/browse/INFRA-2487
pmd = https://issues.jenkins.io/browse/INFRA-2487
swamp = https://issues.jenkins.io/browse/INFRA-2487
tasks = https://issues.jenkins.io/browse/INFRA-2487
warnings = https://issues.jenkins.io/browse/INFRA-2487
# Functionality merged into warnings-ng to support INFRA-2487
brakeman = https://github.com/jenkinsci/brakeman-plugin/issues/23

# Suppress a release with regression that causes node's computer to be null
spotinst@2.0.26

# INFRA-2838 - no pom published, causes update center generation to break
nexus-jenkins-plugin@3.9.20201203-135942.e9f4ebc
nexus-jenkins-plugin@3.9.20201203-151437.f2f6b16
nexus-jenkins-plugin@3.9.20201203-120425.a87655e
nexus-jenkins-plugin@3.13.20220124-204320.8222771
nexus-jenkins-plugin@3.13.20220304-155321.e7fcac5

# Typo in version, should have been 1.122
github-api@1.222

# Messed up file, probably from manual upload
ca-mat-performance-benchmarking-by-broadcom@1.2

# INFRA-3067
credentials@2.6

# Cache file name too long
carbonetes-serverless-container-scanning-and-policy-compliance@1.8.1

# https://www.jenkins.io/security/advisory/2022-01-12/
batch-task = https://www.jenkins.io/security/plugins/#suspensions
debian-package-builder = https://www.jenkins.io/security/plugins/#suspensions

# https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
buddycloud = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
capitomcat = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
chef = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
ci-skip = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
commit-message-trigger-plugin = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
cucumber = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
devstack = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
gitlab-hook = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
git-notes = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
ikachan = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
installshield = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
jenkinspider = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
mysql-job-databases = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
pathignore = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
perl = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
perl-smoke-test = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
pry = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
pyenv = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
python-wrapper = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
rbenv = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
ruby-runtime = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
rvm = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
singleuseslave = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
travis-yml = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/
yammer = https://www.jenkins.io/blog/2021/12/22/deprecated-ruby-runtime/

# https://www.jenkins.io/security/advisory/2022-02-15/
team-views = https://www.jenkins.io/security/plugins/#suspensions
sinatra-chef-builder = https://www.jenkins.io/security/plugins/#suspensions

# The plugin has been closed source since 2015
starteam = https://github.com/jenkins-infra/update-center2/pull/571

# Renamed to 'carl'
castecho = https://github.com/jenkins-infra/repository-permissions-updater/pull/1461

# Renamed to 'itms-for-jira'
itms-junit-report-publisher = https://github.com/jenkins-infra/repository-permissions-updater/pull/1379

# https://www.jenkins.io/security/advisory/2022-03-29/
phoenix-autotest = https://www.jenkins.io/security/plugins/#suspensions

# Obsolete and no longer used by Jenkins X, see https://github.com/jenkins-x/jx/issues/7020
jx-pipelines = https://github.com/jenkins-infra/update-center2/pull/590
jx-resources = https://github.com/jenkins-infra/update-center2/pull/590

# Original service/libraries no longer available
monkit-plugin = https://groups.google.com/g/jenkinsci-dev/c/1bIdZr8P_Ms

# https://www.jenkins.io/security/advisory/2022-05-17/
storable-configs-plugin = https://www.jenkins.io/security/plugins/#suspensions
autocomplete-parameter = https://www.jenkins.io/security/plugins/#suspensions

# https://github.com/jenkinsci/workflow-api-plugin/pull/226
workflow-api@1162.va_1e49062a_00e
# https://issues.jenkins.io/browse/JENKINS-68727
workflow-durable-task-step@1144.vd77b_57189936

# https://issues.jenkins.io/browse/JENKINS-69164
katalon@1.0.31
katalon@1.0.30
katalon@1.0.29
katalon@1.0.28
katalon@1.0.27
katalon@1.0.26
katalon@1.0.25
katalon@1.0.23
katalon@1.0.22
katalon@1.0.21
katalon@1.0.20
katalon@1.0.19
katalon@1.0.18
katalon@1.0.11
katalon@1.0.10
katalon@1.0.9
katalon@1.0.8
katalon@1.0.7
katalon@1.0.6
katalon@1.0.5
katalon@1.0.4
katalon@1.0.3
katalon@1.0.2
katalon@1.0.1
katalon@1.0.0

# Incompatible with Java 8, but does not require 2.357+ to restrict itself to Java 11 only releases of Jenkins
trilead-api@1.71.v9e7860a_67a_df

kubernetes-cd = https://www.jenkins.io/security/plugins/#suspensions

# https://jenkins.io/security/advisory/2022-09-21/
DotCi = https://www.jenkins.io/security/plugins/#suspensions
DotCi-DockerPublish = https://www.jenkins.io/security/plugins/#suspensions
DotCi-Fig-template = https://www.jenkins.io/security/plugins/#suspensions
DotCi-InstallPackages = https://www.jenkins.io/security/plugins/#suspensions
DotCiInstallPackages = https://www.jenkins.io/security/plugins/#suspensions

# Various plugins with severe issues appearing in https://jenkins.io/security/advisory/2022-09-21/
build-publisher = https://github.com/jenkins-infra/update-center2/pull/644
cons3rt = https://github.com/jenkins-infra/update-center2/pull/644
walti = https://github.com/jenkins-infra/update-center2/pull/644

# Various plugins with long-standing tables to divs issues that block global configuration save
# No reason to distribute plugins that block global configuration editing
# Blocking job configuration editing is not enough to be included in this list
aws-sqs = https://issues.jenkins.io/browse/JENKINS-65834
github-sqs-plugin = https://issues.jenkins.io/browse/JENKINS-65729
job-direct-mail = https://issues.jenkins.io/browse/JENKINS-65478
openstack-heat = https://issues.jenkins.io/browse/JENKINS-65514

# https://jenkins.io/security/advisory/2022-10-19/
fireline = https://www.jenkins.io/security/plugins/#suspensions
screenrecorder = https://www.jenkins.io/security/plugins/#suspensions
xframium = https://www.jenkins.io/security/plugins/#suspensions

# https://jenkins.io/security/advisory/2022-11-15/
config-rotator = https://www.jenkins.io/security/plugins/#suspensions

bearychat = https://github.com/jenkinsci/bearychat-plugin/blob/master/README.markdown

# abusive
ascii-magician

# https://github.com/jenkinsci/gitlab-plugin/issues/1419
jersey2-api@2.39-1

# https://github.com/jenkinsci/h2-api-plugin/pull/9
h2-api@10.v8dd81336a_ede

# Using a non-free license
compuware-ispw-operations@1.0.12
compuware-ispw-operations@2.0.0
compuware-ispw-operations@2.1.0
compuware-scm-downloader@2.0.15
compuware-scm-downloader@2.0.16

# https://jenkins.io/security/advisory/2023-03-21/
mashup-portlets-plugin = https://www.jenkins.io/security/plugins/#suspensions
remote-jobs-view-plugin = https://www.jenkins.io/security/plugins/#suspensions