Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Does Atlassian scan files that are attached with JIRA tickets or are stored in Confluence?

Sachindra Narayan
Sachindra Narayan August 25, 2021

How does Atlassian scan for any such malicious files? Are those files blocked from being uploaded? Does this happen with .zip files as well? 

Do we have an option to limit the extensions of the files being uploaded? Can we allow only certain file extensions? Does this happen by default or on an organization level?

Answer
Watch
Like rafael.medina likes this
1103 views

1 answer

0 votes
Alexis Robert
Alexis Robert
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
September 3, 2021

Hi @Sachindra Narayan , 

 

there is no mechanism in Jira or Confluence Cloud to scan or limit attachment type.

There are 2 tickets opened with Atlassian to add these features : 

You should vote for these issues and then keep an eye on these.

 

Let me know if this helps, 

 

--Alexis

View More Comments
Sachindra Narayan
Sachindra Narayan September 5, 2021

@Alexis Robert  this does help. But currently in case any user uploads a malicious file to the JIRA Cloud, there is no mechanism to prevent that file from doing what that file is intended to do? Meaning the file can, lets say, delete cloud files, or corrupt them??

Like
Alexis Robert
Alexis Robert
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
September 6, 2021

Hi @Sachindra Narayan , 

 

at the moment, there is no mechanism to prevent a user uploading a malicious file. 

There are probably security measures taken by Atlassian to prevent code execution or similar threats.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events