Link security vulnerabilities to Jira work items

The security feature in Jira shows vulnerabilities from your connected security tools. It shows some key information about each vulnerability - like the severity, status, and identifier - so you can triage your team’s vulnerabilities and track them until they’re resolved.

Link a security vulnerability to a Jira work item

You can create a new work item for a vulnerability, or link it to an existing work item.

1. From your project's sidebar, select Security.

2. In the vulnerabilities section, find the vulnerability you want to link a work item to, then:

   1. To create a new work item, select Create work item.

   2. To link to a work item that already exists, select the more actions icon () and then Link work item.

Link a vulnerability to multiple work items

You can link a vulnerability to more than one work item. If the vulnerability already has a work item linked to it, here’s how to link another one:

1. In the vulnerabilities section, find the vulnerability you want to link a work item to.

2. Select the more actions icon (), then:

   1. Select Edit linked work item to link to another existing work item.

   2. Select Create another to create and link another new work item.

Unlink a work item from a vulnerability

When you unlink a work item, it will be removed from the work items column in the vulnerabilities section of the Security page.

To unlink a work item from a vulnerability:

1. From your project's sidebar, select Security.

2. In the vulnerabilities section, find the vulnerability you want to unlink a work item from.

3. In the work items column, hover over the work item you want to unlink and select the unlink work item icon, then select Unlink, or

4. Select more actions (), then Edit linked work item.

   1. Confirm which work items are currently linked to the vulnerability.

   2. To unlink a work item, select ( x ) next to the work item, then Save.