Hi,
We have few questions
1) We received a vulnerability report on the Security dashboard and we went through the below document to do the fix
https://community.developer.atlassian.com/t/action-required-atlassian-connect-vulnerability-allows-bypass-of-app-qsh-verification-via-context-jwts/47072
2) We are not using Atlasian connect express (ACE), in our atlassian-connect.json
3) As said in the above url is it enough to add "apiMigrations": { "context-qsh": true } alone in the atlassian-connect.json or do we need to add the addon.authenticate(true) in the endpoints. How to decode context-qsh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.