Connect a security tool to Jira

Complete these steps to view security vulnerabilities in your Jira space:

1. Install an app for your security tool

2. Set up the app to work with Jira

3. Connect security containers to your Jira space

You can connect a security tool and security containers from either the Security or Development tabs in Jira. Any changes you make to connected tools in one place are automatically synchronized to the other, so both places always reflect the same data.

Install an app for your security tool

You can install a Marketplace app for your preferred security tool from either the Security or the Development tabs in Jira. The steps differ slightly depending on whether you are connecting your first security tool or adding another one.

To install the app for your security tool from the Security tab:

1. Enable the security feature in your space if you haven’t done so.

2. From the space navigation, select Security.

3. The options you see depend on whether you have already connected a security tool in your space:

   • If you’re connecting your first tool, select Connect new tool.

   • If you’ve already connected one or more tools, select More actions (···) in the top right, then select Connect tool to add more.

4. Select the tool you want to connect.

5. Review the information about your security tool’s app, then select Get it now to install it on your Jira site.

To install the app from the Development tab:

1. Enable the development feature in your space if you haven’t done so.

2. From the space navigation, select Development.

3. Go to the Related work section and select Vulnerabilities.

4. The options you see depend on whether you have already connected a security tool in your space:

• If you’re connecting your first tool, select Connect tool.

• If you’ve already connected one or more tools, select the manage connections icon as shown in the image below. Then, in the Tools panel, select Connect another tool next to Security to add more tools.

5. Select the tool you want to connect.

6. Review the information about your security tool’s app, then select Get it now to install it on your Jira site.

Set up the app to work with Jira

You can set up your security tool app right after installation or return later to complete the setup. The process is similar whether you start from the Security or Development tabs in Jira.

1. Start the setup.

• If you’ve just installed the app, select Set up app when prompted.

• If you’re returning to complete setup:

  • On the Security tab, select More actions (···), select Finish setup, then select your tool.

  • On the Development tab, select the manage connections icon as shown in the image below. Then, in the Tools panel, select Set up next to your tool.

2. Follow the on-screen instructions, as each app's setup process may be different.

• Your security tool may ask you to log in, verify credentials, allow Jira access to containers, or generate an activation key.

3. When the app set up is complete, return to Jira to connect security containers from your security tool to your space.

Connect security containers to your space

You can connect security containers from either the Security or Development tabs in Jira.

To connect security containers from Security:

1. Go to your space in Jira.

2. From your space navigation, select Security.

3. Select Finish setup to connect your first container, or select Connect security containers to add more containers.

4. In the Tools panel, select Connect containers next to your tool.

5. Select the containers you’d like to add, then Connect.

To connect security containers from Development:

1. Go to your space in Jira.

2. From your space navigation, select Development.

3. Go to the Related work section and select Vulnerabilities.

4. Select Finish setup to connect your first container, or select the manage connections icon as shown in the image below to add more containers.

5. In the Tools panel, select Connect containers next to your tool.

6. Select the containers you’d like to add, then Connect.

Once a container is added, your team can view vulnerabilities within that container in the Security or Development tabs in your space, and link them to work items.