Jenkins · Vulnerability Disclosure

Jenkins Vulnerability Disclosure

Vulnerability disclosure

Jenkins publishes a vulnerability disclosure policy for reporting security issues. A machine-readable /.well-known/security.txt is served. A dedicated security contact is published.

AutomationBuild ServerCI/CDContinuous DeliveryContinuous IntegrationDevOpsOpen SourceRemote Access API
Program: security.txt present

Disclosure Policy

Policy
Policy

Security Contact

Contact
https://www.jenkins.io/security/#reporting-vulnerabilities
Contact
https://www.jenkins.io/security/reporting/
Contact
mailto:jenkinsci-cert@googlegroups.com

Source

Vulnerability Disclosure

Raw ↑
generated: '2026-07-11'
method: searched
probe: true
source: https://www.jenkins.io/.well-known/security.txt
policy:
- https://github.com/jenkinsci/docker/security/policy
- https://www.jenkins.io/security/reporting/
contact:
- https://www.jenkins.io/security/#reporting-vulnerabilities
- https://www.jenkins.io/security/reporting/
- mailto:jenkinsci-cert@googlegroups.com
evidence:
- source: https://www.jenkins.io/.well-known/security.txt
  kind: security.txt (live probe)