This workflow template automates the identification and management of configuration issues for projects within an organization using Snyk. If an issue is detected that has not been fixed and lacks a linked Jira issue, the workflow will automatically open a Jira issue and corresponding subtask. It ensures that if an issue doesn't have an assigned owner in Snyk, a notification is sent to a Slack channel to prompt manual assignment. Should a Jira issue be assigned already, it notifies the owner for an update. The workflow consolidates the results, issuing a single Slack message per project owner, thus streamlining the Application Security Operations process.
Optional Triggers
Webhook,Slack,"Microsoft Teams"
Use Cases
Application Security Operations
Workflow Breakdown
Get the latest configuration issues for projects in an organization in Synk
If the issue is listed as not fixed and a Jira issue is not assigned, open a Jira issue and Subtask
If an owner is not defined in Snyk, ask the Slack channel to assign the Jira ticket to new owner
If a Jira issue is assigned notify the Owner for an update
Combine findings and only send one Slack message to each project owner
Vendors
Slack, Utils, Jira Cloud, Snyk
Workflow Output
Success/Failure via Slack channel and Jira issues
Tips
Modify the first workflow variable step to match your configured settings for integrations and Jira