Merge branch 'main' into katiehorne/tec-430-update-docs-for-bngd-features

khorne3 · khorne3 · commit e85e17599f0c · 2025-11-21T11:51:42.000-05:00
diff --git a/docs/semgrep-appsec-platform/jira.md b/docs/semgrep-appsec-platform/jira.md
@@ -16,10 +16,6 @@ import PL from '@site/src/components/Placeholder';
 
 The Semgrep Jira integration allows you to create Jira tickets based on your Semgrep Code, Supply Chain, and Secrets findings.
 
-:::info
-The Jira integration is currently in beta.
-:::
-
 ## Prerequisites
 
 - You must have a **Jira Cloud** plan. Jira Data Center (self-managed or on-premise) is not supported.
@@ -31,10 +27,7 @@ The Semgrep Jira integration provides the following capabilities:
 
 - You can create tickets for findings from Semgrep Code, Supply Chain, and Secrets.
 - You can create a single ticket for multiple findings (up to 75) that were detected by a single rule in the same project, or create individual tickets per finding.
-- You can automate the creation of tickets for critical or high severity, high confidence findings in your [primary branch](/deployment/primary-branch).
-  - Automated ticket creation can be configured on a per-product setting.
-  - For Supply Chain findings, tickets are created for reachable findings.
-  - Tickets are automatically created for **new** findings generated by scans that occur **after** enabling automated ticket creation. Tickets are not automatically created for existing findings.
+- You can automate the creation of tickets for critical or high severity findings. See [Automatic creation of tickets](#automatic-creation-of-tickets) for more details.
 - Tickets can be created in **multiple Jira projects** if manually specified at ticket creation time.
 
 
@@ -50,7 +43,7 @@ To enable the Jira integration, follow these steps:
 
 1. Sign in to [Semgrep AppSec Platform](https://semgrep.dev/login).
 2. Navigate to [**Settings** > **Integrations**](https://semgrep.dev/orgs/-/settings/integrations).
-3. If this is your first integration, click **Set up First Integration**. Otherwise, click **Add**. In the drop-down menu that appears, select **Jira**.
+3. Click **Add**. In the menu that appears, select **Jira**.
 4. Follow the on-screen instructions to grant Semgrep the necessary permissions and set up the integration.
 5. When prompted, select the Jira instance you want to connect to. If you have multiple Jira instances, choose one instance from the **Use app on** drop-down menu.
    * **For deployments that have used a previous version of the Jira integration**: Ensure you're connecting to the same Jira instance you previously connected to. Please contact Semgrep if you want to connect to a different Jira instance.
@@ -69,11 +62,15 @@ Once you have enabled the Jira integration, you must complete the following step
 ![Jira configuration screen](/img/jira-subdomain.png#md-width)
 _**Figure.** The Jira configuration screen._
 
-:::tip Automatic creation of tickets
-- For Code, Semgrep automatically creates tickets for **critical or high severity, high confidence findings** on the **primary** branch.
-- For Supply Chain, Semgrep automatically creates tickets for **critical or high severity reachable findings** on the **primary** branch.
-- For Secrets, Semgrep automatically creates tickets for **critical or high severity validated secrets** on **any** branch.
-:::
+### Automatic creation of tickets
+
+All products limit automatic ticket creation to **Critical** or **High** severity findings. Code findings must also be on your [primary branch](/deployment/primary-branch).
+
+- For Code, Semgrep automatically creates tickets for **high confidence findings**.
+- For Supply Chain, Semgrep automatically creates tickets for **reachable findings** on the primary branch and **malicious dependency findings** on **any** branch.
+- For Secrets, Semgrep automatically creates tickets for **validated secrets** on **any** branch.
+
+Tickets are automatically created for new findings after each scan completes. These tickets always group findings by rule when a scan identifies multiple new findings for the same rule.
 
 ### Automatic detection of other Jira projects
 
@@ -164,7 +161,7 @@ You can map multiple labels to a single Semgrep field when creating a field mapp
 
 1. Select **Labels** under **Jira fields**.
 1. Select **Set a static value** under **Semgrep fields**. A text box appears.
-1. Enter each label, separated by a comma. Each of these labels are then added to the ticket.
+1. Enter each label, separated by a comma. Each of these labels is then added to the ticket.
 
 :::tip
 The **Project tag** Semgrep field also creates multiple labels.
@@ -211,7 +208,7 @@ To create tickets:
 1. Set the status to **Open**, **Fixing**, or **Reviewing**. Select **Fixing** if it is a known issue that needs to be fixed or **Reviewing** if the finding needs more investigation.
 1. Select the **Create tickets...** checkbox.
     1. Optional: Click the first drop-down list to choose between making a ticket for **groups of findings** or an individual ticket for **each finding**.
-    1. Optional: Click the **JIRA project** drop-down list to select which Jira project to add the findings to. You can choose any project that is associated with the issue type configured in your integration settings.
+    1. Optional: Click the **Jira project** drop-down list to select which Jira project to add the findings to. You can choose any project that is associated with the issue type configured in your integration settings.
 1. Optional: You can add **Comments** in the text box.
 1. Click **Submit** to proceed.
 <!-- vale on -->
@@ -224,7 +221,7 @@ To create tickets:
 ![Create Jira ticket - Code](/img/jira-code-findings.png#md-width)
 _**Figure.** Code triage flow._
 
-Once a ticket has been created, a link appears on the **Findings** page and along the top of an individual finding's details page.
+Once a ticket has been created, a link appears on the **Findings** page and in the sidebar of an individual finding's details page.
 
 ![Jira ticket created - Code](/img/jira-code-ticketed.png#md-width)
 _**Figure.** Ticket created and its ID shown on the finding listed on the Code page._
@@ -247,7 +244,7 @@ To create tickets:
 1. Set the status to **Open**, **Fixing**, or **Reviewing**. Select **Fixing** if it is a known issue that needs to be fixed or **Reviewing** if the finding needs more investigation.
 1. Select the **Create tickets...** checkbox.
     1. Optional: Click the first drop-down list to choose between making a ticket for **groups of findings** or an individual ticket for **each finding**.
-    1. Optional: Click the **JIRA project** drop-down list to select which Jira project to add the findings to.
+    1. Optional: Click the **Jira project** drop-down list to select which Jira project to add the findings to.
 1. Optional: You can add **Comments** in the text box.
 1. Click **Submit** to proceed.
 <!-- vale on -->
@@ -269,7 +266,7 @@ To create tickets:
 1. Set the status to **Open**, **Fixing**, or **Reviewing**. Select **Fixing** if it is a known issue that needs to be fixed or **Reviewing** if the finding needs more investigation.
 1. Select the **Create tickets...** checkbox.
     1. Optional: Click the first drop-down list to choose between making a ticket for **groups of findings** or an individual ticket for **each finding**.
-    1. Optional: Click the **JIRA project** drop-down list to select which Jira project to add the findings to. You can choose any project that is associated with the issue type configured in your integration settings.
+    1. Optional: Click the **Jira project** drop-down list to select which Jira project to add the findings to. You can choose any project that is associated with the issue type configured in your integration settings.
 1. Optional: You can add **Comments** in the text box.
 1. Click **Submit** to proceed.
 
@@ -283,7 +280,7 @@ _**Figure.** Secrets ticket created._
 
 ## Create tickets through the Semgrep API
 
-Semgrep provides an API endpoint you can use to create Jira tickets, either by passing a list of `issue_ids` or filter query parameters to select findings. Refer to the [<i class="fas fa-external-link fa-xs"></i> Jira API documentation](https://semgrep.dev/api/v1/docs/#tag/TicketingService/operation/semgrep_app.core_exp.notifications.ticketing.handlers.openapi_create_tickets).
+Semgrep provides an API endpoint you can use to create Jira tickets, either by passing a list of `issue_ids` or filter query parameters to select findings. Refer to the [<i class="fas fa-external-link fa-xs"></i> Jira endpoint documentation](https://semgrep.dev/api/v1/docs/#tag/TicketingService/operation/TicketingService_CreateTicket).
 
 ## Ticket creation information
 
