Jira Token

Bridgecrew Policy ID: BC_GIT_51
Chekov Check ID: CKV_SECRET_51
Severity: LOW

Jira Token

Description

In Jira, Personal access tokens (PATs) are a secure way to use scripts and integrate external applications with your Atlassian application. If an external system is compromised, you simply revoke the token instead of changing the password and consequently changing it in all scripts and integrations. Personal access tokens are a safe alternative to using username and password for authentication with various services.

Fix - Buildtime

Jira

  1. In your Atlassian application go to:
  2. In Jira select your profile picture at the top right of the screen, then choose Personal Access Tokens .
  3. Select Revoke next to the token you want to delete.