Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Help regarding the New vulnerability voilation in SLA

Hi,

We have few questions

1) We received a vulnerability report on the Security dashboard and we went through the below document to do the fix
https://community.developer.atlassian.com/t/action-required-atlassian-connect-vulnerability-allows-bypass-of-app-qsh-verification-via-context-jwts/47072
2) We are not using Atlasian connect express (ACE), in our atlassian-connect.json
3) As said in the above url is it enough to add "apiMigrations": { "context-qsh": true } alone in the atlassian-connect.json or do we need to add the addon.authenticate(true) in the endpoints. How to decode context-qsh

1 answer

Hi,

Can anyone help us on the above questions

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Training & Certification

Learn how to run Scrum practices in Jira

A new video series from Atlassian University and Scrum.org Learn how to use Jira to practice Professional Scrum with videos and resources that give you an overview of different parts of the Scrum f...

414 views 2 18
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you