How are Jira admins deciding which old automation rules are safe to keep vs remove?

Hi @Yusuf Khawaldeh 

• Via Global automation make a full export of all rules, as backup
• Check if project is not stated on a rule
• Check audit log of rules
• Check the rules individually
  • any components that state an error
  • missing field information
• Disable rules, that seem unused
• Remove them if no respons on disabled rules is provided disabled rules (choose your own time frama)

Hi @Yusuf Khawaldeh -- Welcome to the Atlassian Community!

TL;DR: start with the audit logs to find running rules and ask the rule owners for input before disabling, but not deleting rules.  But, there is a lot more work to do!

In my opinion, this starts with documentation, shared accountability through collaboration, and active management of automation rules...and this is not a small effort; consider incrementally doing this work with peer team members.  There have been several community questions on this topic, and I recommend searching for and reading those.

While Atlassian provides some logging of rule executions, performance insights, etc. there are limited holistic tools to support managing rules in a product / site.  Worse still, with the introduction of Rovo and third-party integration features, there are many aspects impacting rule executions which are not visible in the audit logs.  There are rule management REST API endpoints with which one could create rudimentary, automatic rule documentation.  However, those do not include useful things like:

• The ability to disable the use of the above noted rule endpoints in a site, preventing such risky practices as: self-modifying rules, run-away automated rule creation / update / deletion, etc.
• Rule audit logs
• Usage statistics
• Public webhook events in products such as Jira to detect things like rule creates, updates, and deletes
• Human-readable data on rule structures / component configurations
• Human-readable names of triggers, actions, etc. 
  • Instead, one needs to build their own mapping tool of the JSON component names to human-readable names...as many of us have done over the years by writing our own apps to parse rule JSON.  And, you would need to update it weekly / daily as the automation features change...often without notice!

In my opinion, automation rules in Atlassian tools should be considered production code assets for one's company, and managed accordingly with the same practices, change management, etc. one would use for other app code.

Starting with the guidance from @Marc -Devoteam- and @David Nickell will help.  Also please consider:

• Swarm with your Site / Product Admins to come up with a plan and guidelines for rule usage, documentation, and maintenance
• Set up cadenced conversations with Site / Product Admins to manage rule health
• Cadenced export all rules, by each product: Jira, Confluence, JSM, JPD, etc. for backup and documentation purposes
• Identify which rules are enabled versus disabled
• Identify which rules have run in the last N-time units, also checking the performance insights for frequently running rules; remember to check scheduled trigger rules which appear to have very long repeat cadences, such as once-per-year
• Identify all people who can write rules
• Identify all people who are listed as owners and actors of rules
• Identify people no longer with your company who have rules assigned as owners or actors to learn to whom they delegated that role
• And the very difficult / time-consuming one: meet with all rule authors to understand and document the purpose and design of every single rule.  This is the certain way to confirm a rule is / is not needed.

Kind regards,
Bill