Automated changelog for 2.540

Author: jenkins-infra-changelog-generator[bot]

content/_data/changelogs/weekly.yml

@@ -28634,7 +28634,8 @@
       openSUSE installations (details in <a href="https://www.jenkins.io/blog/2022/03/25/systemd-migration/">https://www.jenkins.io/blog/2022/03/25/systemd-migration/</a>).
       <br /><br />
       ⚠️ There is a known bug introduced for openSUSE users: the <code>autorefresh</code>
-      feature of the zypper repository is disabled and requires a <code>zypper refresh</code> command.
+      feature of the zypper repository is disabled and requires a <code>zypper refresh</code>
+      command.
     changes:
       - type: rfe
         category: rfe
@@ -28773,6 +28774,60 @@
   # pull: 11331 (PR title: Update dependency sass to v1.94.2)
   # pull: 23852 (PR title: Reduce testing branches)
 
+  - version: '2.540'
+    date: 2025-12-01
+    changes:
+      - type: rfe
+        category: rfe
+        pull: 23865
+        authors:
+          - strangelookingnerd
+        pr_title: Ignore casing in `AvatarContributor#extractDomainFromUrl`
+        message: |-
+          Ignore casing in <code>AvatarContributor#extractDomainFromUrl</code>
+      - type: bug
+        category: bug
+        pull: 23858
+        authors:
+          - timja
+        pr_title: Show saved log recorders
+        message: |-
+          Show saved log recorders again (regression in 2.537).
+      - type: bug
+        category: bug
+        pull: 23855
+        authors:
+          - daniel-beck
+        pr_title: Fix CspBuilder not applying fallback to uninitialized 
+          directive
+        message: |-
+          Fix incorrect handling of Content Security Policy inheritance chain for fetch directives. This could affect attempts to set <code>*srcelem</code>or <code>*srcattr</code> directives in CSP Plugin 2.x.
+      - type: bug
+        category: bug
+        pull: 20345
+        authors:
+          - daniel-beck
+        pr_title: Add CSP-compliant variant of undocumented validateButton 
+          script feature
+        message: |-
+          Bugfix: Make "Change API Token" for legacy API tokens work when Content Security Policy is enforced and prohibits inline JavaScript.
+           Developer: Add <code>XJenkinsValidateButtonCallback</code> (a JSON object with <code>callback</code> and <code>arguments</code> keys) as a replacement for the CSPincompatible <code>script</code> HTTP response header for <code>f:validateButton</code>.
+
+  # pull: 11147 (PR title: Update the ReadMe)
+  # pull: 11291 (PR title: Adapt docs for Jira migration)
+  # pull: 19540 (PR title: Update dependency stylelint to v16.26.0)
+  # pull: 20000 (PR title: Fix Javadoc grammar in InstanceIdentityProvider; prefer toString() for readability in Functions)
+  # pull: 23852 (PR title: Reduce testing branches)
+  # pull: 23853 (PR title: Update dependency org.jenkins-ci.plugins:matrix-auth to v3.2.9)
+  # pull: 23857 (PR title: Update actions/setup-java digest to 4e7e684)
+  # pull: 23862 (PR title: Update Yarn to v4.12.0)
+  # pull: 23869 (PR title: Update dependency prettier to v3.7.1)
+  # pull: 23870 (PR title: Fill in since annotations)
+  # pull: 23878 (PR title: Update dependency com.puppycrawl.tools:checkstyle to v12.2.0)
+  # pull: 23879 (PR title: Update dependency stylelint to v16.26.1)
+  # pull: 23881 (PR title: Update softprops/action-gh-release action to v2.5.0)
+  # pull: 23886 (PR title: Update dependency prettier to v3.7.2)
+
 # DO NOT EDIT THIS FILE DIRECTLY ON GITHUB IF YOU HAVE COMMIT ACCESS
 # ALL CHANGES MUST GO THROUGH PULL REQUESTS
 # MALFORMED FILE CONTENTS WILL BREAK THE SITE BUILD