Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Better, Faster, Stronger: Nexus Lifecycle's Improved JIRA Add-on Gives Developers and AppSec Something to High-Five About

August 14, 2019 By Michelle Dufty

We’re happy to announce another helpful integration for Nexus Lifecycle -- our new and improved Nexus IQ Add-on for JIRA!

Anyone involved in the product development process knows just how critical Atlassian’s tools (and similar tooling) are, for, well...product development. JIRA, in particular, helps teams -- from engineering managers to development to customer support -- keep track of tickets, bug fixes, and product requirements. It’s always been a critical aid to the actual implementation of DevOps, as it creates the communication portal through which teams across the company can collaborate on development tasks.

null

 

Our improved Nexus IQ JIRA Add-On puts remediation right in the development workflow—getting violations in front of the people who can fix them. By automatically creating JIRA tickets for policy violations, development teams can infuse application security right into their workflow. Tickets are created at the component level for its respective JIRA project, informing developers of the severity of a threat and generating an actionable bite-size piece of work.

The best part? No more lengthy, untrackable lists of vulnerabilities. With violation reporting in JIRA, the administrative overhead of managing a lengthy bug list is eliminated. Component fixes are assigned with one-click and tracking is as easy as it is for any development task. That was easy.

IQ_JIRA_Workflow 2

This provides an instinctive way to communicate policy violations, as well as remediation guidance via Nexus Lifecycle, for development teams that are already using JIRA for feature development and bug reporting.

Ready to download the Nexus IQ JIRA Add-on? Click here to download it on the Atlassian Exchange and check out our install instructions here.

Brianne Strozewski coauthored this post.

 

Tags: JIRA, Nexus Lifecycle, AppSec, Application Security, bug triage, featured, Product

Written by Michelle Dufty

Michelle Dufty is the Senior Director of Product Marketing at Sonatype where she brings solutions to market that unite development, security, and operations teams to accelerate software innovation while minimizing open source risk.