v2.20

• Important security fixes
• User passwords are no longer stored in memory as part of the authentication cache.
  Instead, BCrypt is used.
  The Java system property hudson.plugins.active_directory.CacheUtil.bcryptLogRounds can be used to configure the cost parameter; the default is 10 (for 1024 rounds).
  Additionally, the caching of successful authentications can be disabled by setting the system property hudson.plugins.active_directory.CacheUtil.noCacheAuth to true.
• When a local fallback security realm is configured, the plugin would sometimes reset the password of the specified user to a fixed value.