Topics tagged security

Topic	Replies	Views	Activity
Addon.authenticate vs addon.checkValidToken - differences? when to use which? Jira Cloud auth , jwt , security , atlassian-connect-express	5	86	May 20, 2022
Removal of OAuth 2.0 (3LO) authentication from site URIs Jira Cloud Announcements jira-cloud , rest-api , security , deprecation	0	61	May 17, 2022
Attention: CVE-2022-22965 Spring Framework RCE Investigation Announcements security , ecosystem-security , bug-fix , cve-2022-22965	20	8900	May 16, 2022
Partners can now opt in to share Security Self-assessment responses with customers Announcements security , ecosystem-security	27	1313	May 10, 2022
Vulnerability Scanning Jira Cloud security , ecosystem-security	2	110	April 14, 2022
Connect has returned to a per-installation secret model Announcements jira-cloud , confluence-cloud , security , ecosystem-security , connect	6	345	May 6, 2022
Upcoming changes to Data Center App Approval (April 2022) Announcements datacenter , security , ecosystem-security , dc-apps-program	1	370	May 5, 2022
Atlassian Connect App installation lifecycle updates or checks Jira Cloud jira-cloud , atlassian-connect , security , connect-app	3	159	April 3, 2022
Securely embedding all.js third-party javascript Jira Cloud javascript , atlassian-connect , security	5	1169	April 1, 2022
New 3LO app controls Announcements oauth2 , security , 3lo	3	652	April 29, 2022
What happened to "connect installation lifecycle security" enforcement? Atlassian Ecosystem Design atlassian-connect , security , lifecycle	2	192	March 24, 2022
Secure REST endpoint in custom Confluence plugin Atlassian Developer Tools confluence-server , rest-api , plugin , security , confluence-plugin	1	392	March 24, 2022
Connect is returning to per-installation secrets Announcements jira-cloud , confluence-cloud , security , ecosystem-security , connect	4	2148	March 11, 2022
Security Self Assessment Program - Best Practices Jira Cloud jira-cloud , confluence-cloud , rest-api , security	4	305	February 18, 2022
HSTS check fail with Connect Security Requirements Tester (CSRT) Jira Cloud jira-cloud , java , ac-spring-boot , security , hsts	25	1305	February 5, 2022
Deprecation of Connect JS getSelectedText API for security reasons Announcements atlassian-connect , security , deprecation , ecosystem-security	16	2914	March 6, 2022
Updated: 31 January 2022 - Action required - Deprecating persistent refresh tokens Announcements security , deprecation , 3lo	9	1895	February 1, 2022
Upcoming changes to Data Center App Approval Announcements datacenter , security , ecosystem-security , dc-apps-program	63	5185	February 13, 2022
0-day vulnerability log4j Jira Cloud security	2	1887	December 10, 2021
How to solve with snyk.io security scanner results for Jira Data Center approval? Jira Data Center security	3	608	December 5, 2021
Superseded: 31 January 2022 - Action required - Deprecating persistent refresh tokens Announcements security , deprecation , 3lo	78	11822	December 6, 2021
Client Info in Atlassian Connect Express add-on Jira Cloud jira-cloud , security , atlassian-connect-express	0	362	December 3, 2021
Storing client data info in secure manner - Atlassian Cloud Addon Jira Cloud jira-cloud , security , atlassian-connect-express	0	479	December 2, 2021
Action Required - Atlassian Connect installation lifecycle security improvements Announcements jira-cloud , confluence-cloud , security , ecosystem-security , connect	197	16634	December 30, 2021
Updated URIs for avatars, attachments, and attachment thumbnails Jira Cloud Announcements rest-api , security , permissions	6	1452	December 23, 2021
Bug Bounty & Security Participant Badges disappeared from marketplace General Discussion security , bug-bounty , ecosystem-platform-security , cloud-security	6	472	November 11, 2021
Updated URI for project avatar resources in REST API responses Jira Cloud Announcements rest-api , avatar , security , permissions	1	900	November 11, 2021
CVE-2021-42574 - Unrendered unicode bidirectional override characters may impact apps with code visualizing components Announcements security , ecosystem-security , cve-2021-42574	8	2617	December 4, 2021
Invalidating trust signals for having non MPAC apps on Bugcrowd General security , ecosystem-security , mpac_security_test	1	313	November 2, 2021
Missing Function Level Access Control vulnerability in ac-express and ac-spring-boot Atlassian Developer Tools jira-cloud , ac-express , ac-spring-boot , atlassian-connect , security	2	931	October 28, 2021