> ## Documentation Index
> Fetch the complete documentation index at: https://docs.pwnbook.app/llms.txt
> Use this file to discover all available pages before exploring further.

# Jira

> Push findings, tasks, and risks to Jira issues and link security work to your existing engineering backlog.

<img src="https://mintcdn.com/pwnbook/noJyYhCscAD7TYUE/logos/jira.svg?fit=max&auto=format&n=noJyYhCscAD7TYUE&q=85&s=6a58e3425c3cf885d40b1dcd74fdb8a3" alt="Jira" style={{ height: "32px", marginBottom: "16px" }} width="48" height="48" data-path="logos/jira.svg" />

## Overview

The Jira integration lets you create and link Jira issues directly from Pwnbook findings, risks, and tasks. Security teams can push work items into engineering backlogs without copy-pasting, and track remediation progress alongside other security data.

## How authentication works

Jira uses a two-tier model in Pwnbook:

| Tier                   | Used for                                                       | Where it's configured                      |
| ---------------------- | -------------------------------------------------------------- | ------------------------------------------ |
| **Org API key**        | Platform-initiated issue creation, reading boards and projects | Organization Settings → Marketplace → Jira |
| **Personal API token** | Write actions attributed to you (comments, transitions)        | Profile → Connections                      |

The org credential uses a dedicated Atlassian API token and email address — typically a service account. When team members take actions that should appear under their own identity (adding comments, moving tickets), Pwnbook uses their personal Atlassian token from Profile → Connections.

## Prerequisites

* A Jira Cloud workspace (Atlassian Cloud)
* An Atlassian API token (for the org credential, use a service account)
* Admin or Owner access in Pwnbook for org setup

## Credentials required

| Field            | Description                                                            |
| ---------------- | ---------------------------------------------------------------------- |
| **API Token**    | Atlassian API token (generated per user at Atlassian account settings) |
| **Email**        | Atlassian account email associated with the token                      |
| **Instance URL** | Your Jira base URL — e.g., `https://yourcompany.atlassian.net`         |

## Setup

<Steps>
  <Step title="Create an Atlassian API token">
    1. Log in to [id.atlassian.com/manage-profile/security/api-tokens](https://id.atlassian.com/manage-profile/security/api-tokens).
    2. Click **Create API token**.
    3. Give it a label like "Pwnbook Org" and copy the generated token.

    <Tip>For the org credential, use a dedicated service account email rather than a personal account. This ensures issue creation continues to work even if a team member leaves.</Tip>
  </Step>

  <Step title="Configure the org connection">
    1. Go to **Organization Settings → Marketplace → Jira**.
    2. Enter the **API Token**, **Email**, and **Instance URL**.
    3. Click **Save & Test** — Pwnbook verifies access by listing your Jira projects.
    4. Select the **default project** for new issues created from Pwnbook.
  </Step>

  <Step title="Connect your personal Jira account (optional)">
    For write actions to appear under your own identity:

    1. Create a personal Atlassian API token at the URL above.
    2. Go to **Profile → Connections** in Pwnbook.
    3. Click **Connect** next to Jira.
    4. Enter your personal token, email, and instance URL.
    5. Click **Save**.
  </Step>
</Steps>

## Creating Jira issues

From any finding, risk, or task in Pwnbook, use the **Create Jira Issue** action to push it to Jira with title, description, and severity pre-filled. Before creating, you can adjust:

* **Project** — select any Jira project your credential has access to
* **Issue type** — Bug, Task, Story, etc.
* **Priority** — mapped from Pwnbook severity
* **Assignee**
* **Labels and components**

## What's available

| Feature             | Description                                                                         |
| ------------------- | ----------------------------------------------------------------------------------- |
| **Issue creation**  | Push findings and tasks to Jira with one click                                      |
| **Issue linking**   | Link existing Jira issues to Pwnbook findings                                       |
| **Issue view**      | Browse open issues in your configured default project                               |
| **Status tracking** | See issue status and priority in Pwnbook                                            |
| **Comments**        | Add comments to linked Jira issues from Pwnbook (uses personal token if configured) |

## Supported Jira editions

The Pwnbook integration works with **Jira Cloud** (atlassian.net). Jira Server and Jira Data Center are not currently supported.

## Disconnecting

To remove the org Jira integration:

1. Go to **Organization Settings → Marketplace → Jira**.
2. Click **Disconnect**.
3. Confirm.

To remove your personal connection, go to **Profile → Connections** and click **Disconnect** next to Jira.
