Governance Meeting, April 29, 2024


29 Apr 2024

Attendees :busts_in_silhouette:

Upcoming Calendar :calendar:

  • Next weekly release: 2.456
  • Next LTS: 2.452.1, May 15, 2024
    • Alex Brandes as release lead
    • Changelog and upgrade guide from Kevin Martens
  • Next major events:



  • Jenkins has been accepted to Google Summer of Code 2024, see Blog post from Alyssa Tong
    • Google will announce the selected projects May 1, 2024
  • Jenkins awards announced at cdCon Wednesday 17 Apr 2024. These awards recognize contributions from individuals in the community and the progress made in the name of Jenkins. Awarded candidates are:
    • Most Valuable Jenkins Advocate:
      • Darin Pope
    • Most Valuable Jenkins Contributor:
      • Stefan Spieker
    • Jenkins Security MVP:
      • Yaniv Nizry

Action Items

  • Mark submit application for 2025 AWS open source credits program
    • Done - copy provided to the Jenkins board mailing list
    • June 2024 is the expected announcement date
  • Basil create the attribution entries for the downloads page
  • Kevin Martens retire the Chinese Jenkins site
    • Mark needs to do more Kubernetes setup, then Kevin and Mark will meet with Damien
    • More work pending

Community activity

  • Contributor Spotlight this week: Mark Waite
    • Next spotlight - Kevin Martens

Governance Topics

  • Trademark request approval
    • Trademark usage request for “Jenkins as a Service by CloudBees” - approved
      • Four active board members approved
      • Complies with Linux Foundation Trademark Guidelines as previously agreed
  • Azure expense status
    • Azure donation from Microsoft expires Aug 31, 2024
    • Infrastructure team will accelerate their use of the Azure donation
      • Reduce AWS and DigitalOcean expenses between now and Aug 31, 2024
      • Increase AWS and DigitalOcean expenses after Aug 31, 2024 to offset end of Azure donation
      • Special thanks to Damien, Herve, and Stephane for cost reductions
  • AWS credits donation
    • Credits have been received, work started to apply credits to Jenkins tasks
  • AWS credit application for 2025
    • Application has been submitted
  • Spring Security 5.8.x end of public support
    • Last public build of Spring security framework 5.8.x is August 2024
      • Spring security 6.x requires Jetty 11 with Jakarta EE 9 (jakarta.servlet), not Jetty 10 with Jakarta EE 8 (javax.servlet)
      • August 31, 2024 date seems likely to stick
    • Last public build of Spring framework 5.3.x is August 2024
      • Spring framework 6.1 and later require Java 17
    • Alternatives:
      • Accept that if there is a security vulnerability reported in Spring security 5.8.x between August 2024 and end Oct 2024, we may need to fork Spring Security and fix it ourselves
      • Mark started discussion in the mailing list to find alternatives