Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Plugins Security

MK
MK January 29, 2020

Hi, we want to use a JIra plugin which is not supported. How was wondering what are the security implications of using any JIRA plgin and how do I mitigate risks to our business. 

Do Atlassian do due diligence on these plugins, I am unable to find anything relevant on this topic except one post.

 

Kind Regards

Answer
Watch
Like Be the first to like this
936 views

1 answer

1 vote
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
January 29, 2020

An "unsupported" plugin could be doing anything.  Atlassian verified ones have been through some security tests, and are known to be backed by trusted organisations, but unsupported leaves the door completely open.

View More Comments
MK
MK January 30, 2020

Thanks for the input now if I see this plugin.

https://marketplace.atlassian.com/apps/288/jira-charting-plugin?hosting=server&tab=overview

Its says its from Atlassian but unsupported. How would it fit with your response.

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
February 1, 2020

Exactly the same.  But as it's by Atlassian, it's not going to be malicious.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events