ontrack Jenkins

The Jenkins project announced an unresolved security vulnerability affecting the current version of this plugin (why?):

This plug-in allow Jenkins to notify ontrack about events like build creation, status of running job, etc... but also allows Jenkins to require information from ontrack.

It allows to run the following actions:

  • creating a new build
  • promoting an existing build
  • validating an existing build according to the result of the build
  • execute any arbitrary DSL as a step or as a publisher
  • setup a build environment using the DSL
  • evaluating a condition based on a DSL evaluation


You can install the Ontrack Jenkins plug-in on any Jenkins version starting from 2.7.


To configure the build, go in Manage Jenkins > Configure System and enter the following data in the Ontrack configuration section:

  • Configuration name in ontrack — name of the Jenkins configuration in Ontrack ; this configuration will be used to generated back links to the Jenkins instance you are configuring. This will be used by the Build notifier.
  • URL — base URL to the Ontrack instance
  • User and Password — user used for the connection to Ontrack - this user must have enough rights for the actions it has to carry from within Jenkins. Usually, giving a Controller role should be enough.
  • Max tries - number of times a call to Ontrack must be repeated in case of failure
  • Retry delay - number of seconds between each retry attempt
  • Remote Ontrack version cache - number of seconds we consider the version from Ontrack being valid. This version is used by some plugin services which need to ensure backward compatibility
  • Security mode - defines how the security must be enforced

Five individual plug-ins are provided by the general Ontrack plug-in.