• 6
    • 4
    • We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Problem Statement

      As a security minded customer, I want to help ensure that users are not adding API keys, tokens, passwords or similar confidential information in our Jira Data Center Environment. 

      Summary:

      In Jira, users are generally free to submit any data in to their issues, comments, and fields. As a result, this could allow users to accidentally include data and create a possible security issue. 

      Suggestion:

      It would be great if we could implement a secret scanner in Jira natively so that the environment can scan for, and identify risks like this and allow administrators to take a corrective action

       

            [JRASERVER-78856] Implement a Secret Scanner in Jira Data Center

            No work has yet been logged on this issue.

              Unassigned Unassigned
              6a1ad6d343e3 Patrick Turbett
              Votes:
              4 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: