Integrate GitHub for Security

Connect Jira Software to GitHub so your team can view security containers and vulnerabilities in Jira. Your team can then triage those vulnerabilities, and quickly create new issues to link to them, or link existing issues.

Install the GitHub for Jira app

Install the GitHub for Jira app from the Atlassian Marketplace to connect GitHub to your Jira Software site.

1. From the top navigation, go to Apps > Explore more apps.

2. Search for GitHub for Jira, then select it from the list.

3. Select Get app, then Get it now.

Set up GitHub for Jira

1. If you have just installed the app, select Get started. Otherwise, from the top navigation, go to Apps > Manage your apps > GitHub for Jira > Get started.

2. Select Continue.

3. Select GitHub Cloud, then Next.

4. Enter your GitHub username and password, then select Sign in.

5. Select the organization you want to connect to Jira, then select Install or Connect.

Add GitHub Security to a project

To track GitHub vulnerabilities in Jira, you need to add GitHub Security to each project you want them to appear. When you’re back in Jira:

1. From your project's sidebar, go to Project settings > Toolchain.

2. Select the Add button, then Add tool.

3. Find GitHub Security, then select Add to project.

Connect security containers to your project

The final stage is to connect security containers to your project.

1. From your project's sidebar, go to Project settings > Toolchain.

2. Select GitHub Security in the list of tools.

3. Select the add connection button () for GitHub Security.

4. Choose one or more containers from the list and select Add security container.

Your team can now use the security feature to view recent vulnerabilities found in the linked security containers, and start linking them to issues.