Security containers in Jira showing wrong vulnerability statuses

Platform Notice: Cloud Only - This article only applies to Atlassian products on the cloud platform.

Summary

Security containers show more open vulnerabilities in Jira when compared to Vulnerability databases such as Snyk

Environment

Jira Cloud

Diagnosis

We can link and manage security vulnerabilities in jira and these should sync with Synk and other available tools. However, sometimes the data does not match. For example:

Jira

List of vulnerabilities showing 1 critical 1 High 5 Medium and 4 Low

Snyk:

List of vulnerabilities showing 0 critical 0 High 2 Medium and 1 Low

Cause

This issue can occur if the data service stops ingesting new data. The reasons for this disruption are under investigation.

Solution

To resolve the issue, please try Disconnecting and reconnecting the Snyk organization. This should start a full resync and reingest the data.

Updated on March 3, 2025

Still need help?

The Atlassian Community is here for you.