Hi John, Can you be more specific about what patch the vulnerability scanner suggests or give more information about the service / vulnerability it found? It seems strange it would confuse Winstone servlet container with Oracle Application Server.
That said, Winstone is not the only choice for running Jenkins. You can also run Jenkins in a servlet container of your choice eg. Tomcat / Jetty. Best of luck, J -- View this message in context: http://jenkins.361315.n4.nabble.com/Verification-of-inability-to-remediate-vulnerability-in-Jenkins-tp4537925p4538200.html Sent from the Jenkins users mailing list archive at Nabble.com.
