As a public-facing web application, JIRA Agile's application-level security is important. This document contains links to version-specific security advisories and related documents for the JIRA Agile add-on. Please also see the JIRA Security Advisories.
On this page:
Finding and Reporting a Security Vulnerability
Atlassian's approach to reporting security vulnerabilities is detailed in How to Report a Security Issue.
Publication of JIRA Agile Security Advisories
Atlassian's approach to releasing security advisories is detailed in Security Advisory Publishing Policy.
Atlassian's approach to categorising security issues is detailed in Severity Levels for Security Issues.
Our Patch Policy
Atlassian's approach to releasing patches for security issues is detailed in Security Update Policy.