Skip to main content
Jira

Overview

The Jira integration lets you create and link Jira issues directly from Pwnbook findings, risks, and tasks. Security teams can push work items into engineering backlogs without copy-pasting, and track remediation progress alongside other security data.

How authentication works

Jira uses a two-tier model in Pwnbook:
TierUsed forWhere it’s configured
Org API keyPlatform-initiated issue creation, reading boards and projectsOrganization Settings → Marketplace → Jira
Personal API tokenWrite actions attributed to you (comments, transitions)Profile → Connections
The org credential uses a dedicated Atlassian API token and email address — typically a service account. When team members take actions that should appear under their own identity (adding comments, moving tickets), Pwnbook uses their personal Atlassian token from Profile → Connections.

Prerequisites

  • A Jira Cloud workspace (Atlassian Cloud)
  • An Atlassian API token (for the org credential, use a service account)
  • Admin or Owner access in Pwnbook for org setup

Credentials required

FieldDescription
API TokenAtlassian API token (generated per user at Atlassian account settings)
EmailAtlassian account email associated with the token
Instance URLYour Jira base URL — e.g., https://yourcompany.atlassian.net

Setup

1

Create an Atlassian API token

  1. Log in to id.atlassian.com/manage-profile/security/api-tokens.
  2. Click Create API token.
  3. Give it a label like “Pwnbook Org” and copy the generated token.
For the org credential, use a dedicated service account email rather than a personal account. This ensures issue creation continues to work even if a team member leaves.
2

Configure the org connection

  1. Go to Organization Settings → Marketplace → Jira.
  2. Enter the API Token, Email, and Instance URL.
  3. Click Save & Test — Pwnbook verifies access by listing your Jira projects.
  4. Select the default project for new issues created from Pwnbook.
3

Connect your personal Jira account (optional)

For write actions to appear under your own identity:
  1. Create a personal Atlassian API token at the URL above.
  2. Go to Profile → Connections in Pwnbook.
  3. Click Connect next to Jira.
  4. Enter your personal token, email, and instance URL.
  5. Click Save.

Creating Jira issues

From any finding, risk, or task in Pwnbook, use the Create Jira Issue action to push it to Jira with title, description, and severity pre-filled. Before creating, you can adjust:
  • Project — select any Jira project your credential has access to
  • Issue type — Bug, Task, Story, etc.
  • Priority — mapped from Pwnbook severity
  • Assignee
  • Labels and components

What’s available

FeatureDescription
Issue creationPush findings and tasks to Jira with one click
Issue linkingLink existing Jira issues to Pwnbook findings
Issue viewBrowse open issues in your configured default project
Status trackingSee issue status and priority in Pwnbook
CommentsAdd comments to linked Jira issues from Pwnbook (uses personal token if configured)

Supported Jira editions

The Pwnbook integration works with Jira Cloud (atlassian.net). Jira Server and Jira Data Center are not currently supported.

Disconnecting

To remove the org Jira integration:
  1. Go to Organization Settings → Marketplace → Jira.
  2. Click Disconnect.
  3. Confirm.
To remove your personal connection, go to Profile → Connections and click Disconnect next to Jira.