Skip to:

Marketplace

Sonatype for Jira Data Center

by Sonatype
works with Jira Server 8.20.0 - 9.13.1, Jira Data Center 11.0.0 - 11.3.0 and more
Get it now

Free app

OVERALL RATINGS

INSTALLS

63

SUPPORT

  • Partner Supported

Key highlights of the appPrioritize and track open source policy violations from Sonatype Lifecycle in Jira

Receive your Sonatype IQ policy violations in Jira

Your Sonatype IQ policy violations will appear in Sonatype IQ notifications in Jira, letting your team know where the violations are and how to prioritize.

Empower developers to take action.

Component-level violation details help development teams understand which open source components are problematic, allowing them to take immediate action and reduce MTTR.

Map notifications to the right remediation team.

Configure the Sonatype for Jira Add-on to work how your team works- customize how violation tickets are created and which projects they appear in.

Supporting media

More details

Sunsetting Notice

The plugin entered Extended Maintenance on January 31, 2026. The plugin will receive only critical bug and security fixes through December 31, 2026. On January 1, 2027, the plugin will be sunsetted, removed from the marketplace, and archived. For details see Sonatype Sunsetting Information.

Note: Sonatype for Jira Cloud is now available.

How does it work? In Nexus IQ Server, administrators identify which types of policy violations should trigger the creation of a JIRA ticket. The Nexus IQ JIRA add-on allows the mapping of IQ Applications and Organizations to a JIRA project (from the add-on's administration screen). From there, teams can track the progress of remediation efforts right in JIRA.

More than 10 million software developers rely on Sonatype to innovate faster while mitigating security risks inherent in open source. Learn more at www.sonatype.com.

Resources

Privacy and Security

Privacy policy

Atlassian's privacy policy is not applicable to the use of this app. Please refer to the privacy policy provided by this app's partner.

Partner privacy policy

Security program

This app is not part of the Marketplace Bug Bounty program.

Version information

Version 3.0.1•for Jira Data Center 11.0.0 - 11.3.0

Release date
Apr 8th 2026
Summary
Updated internal dependencies to address a security vulnerability
Details
  • Updated internal dependencies to address a security vulnerability
Payment model
Free
Explore all Data Center versions

Learn and explore

  • What’s Marketplace
  • App installation
  • About Atlassian
  • Atlassian resources
  • Search and ranking
  • Atlassian events
  • Atlassian foundation

Follow