Issue Summary

In a automation rule that has trigger "Vulnerability found", the "Link vulnerability to work item" action component can fail with the below error:

Error trying to link vulnerability to work item:
<work item ID> 

It is currently not possible to understand the root cause of the failure through the Automation audit logs.

Steps to Reproduce

(Using Github dependabot as an example)

• Connect Github as a security tool to a Jira space using toolchain
• Ensure Dependabot is enabled on GH 
• Sync a vulnerability to Jira from GitHub repo such that the description of the vulnerability spans more than 5000 characters

Expected Results

Currently, there is a 5000-character limit for the description of the synced vulnerability. The automation rule should still link the security vulnerability to the Jira work item by truncating the description to 5000 characters.

Actual Results

If the synced vulnerability has >5000 characters in the description, the operation fails with the below message:

Error trying to link vulnerability to work item:
<work item ID> 

Workaround

Truncate the description of the synced vulnerability or reduce to <5000 characters to successfully link the vulnerability to the work item via automation