Skip to main content
Skip table of contents

The Soteri Dashboard: Viewing Jira's overall security status

The Soteri Dashboard allows users to view the scan statuses of all Jira projects they administer, or if they were granted explicit app access, the Jira projects they can view. It can be accessed from anywhere within Jira by clicking the padlock icon at the top-right of the screen:

Here is an example:

image-20240103-193854.png

Each project will appear, along with the following:

  • The number of unique scan findings in that project.

  • The scan’s status. This can be:

    • Up To Date: The project has been fully scanned and either has the Auto Scan Hook enabled to scan all future content, or no changes have been made to the project since it was last scanned.

    • Outdated: The project has been fully scanned, but changes have been made since that happened.

    • Scanning: A scan of the project is in progress.

    • Unscanned: The project has not been scanned.

    • Scan Error: There was an issue doing a scan of this project. Click the project name to learn more.

  • A dropdown menu of actions you can perform for that project.

Note that the findings count does not include any findings which have been marked reviewed.

You can use the provided “Filter by project name” input to search for particular projects.

Clicking on the gear icon in the upper right will take you to the Security for Jira Settings page.

Triggering Scans for an Individual Project

Clicking on a project’s “Actions” dropdown menu reveals the options “Scan” and “Export”:

image-20240103-193915.png

Choosing “Scan” will trigger a scan for new and modified issues in that project (*** VERIFY). Choosing “Export” will download a list of all findings for that project in CSV format. Read more about exports here.

Clicking on a project’s name in the Soteri Dashboard will take you to that project’s Security Analysis, where you can trigger scans on a per-issue basis.

If any vulnerabilities are found, we recommend following our advice here.

Triggering Scans for All Projects

Jira administrators and any user granted explicit app access can see the Scan All button.

image-20240103-191208.png

Pushing this button will trigger scans for every project in the Jira instance.

The scan queue indicator shows how many issues are waiting to be scanned:

image-20240103-191305.png

Cancelling Scheduled Scans

Jira administrators and users granted explicit app access who access the dashboard can click on the “Scans in queue” indicator to reveal the Cancel Scans button. Clicking this button will cancel all scheduled scans. Scans necessary for the “Keep space scans up to date” option will not be affected.

image-20240103-185638.png

Exporting the dashboard overview

Security for Jira allows users to export the list of projects visible on the dashboard together with their individual scan status, up to date status, and the number of unreviewed findings in that project.

localhost_2990_jira_plugins_servlet_soteri_dashboard copy.png

You can also export the dashboard overview using the REST API.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.