Veracode recommends that you do not allow the Jira users in your organization to edit the Mitigations Status and Comments field of imported finding issues. To prevent users from changing this field, you can set it to read-only.
To change the Mitigations Status and Comments field to read-only in Jira:
- On your Jira system, download and install ScriptRunner for Jira from the Atlassian Marketplace.
- In Jira, select .
In the Add Behaviour section, in the Name field, enter Make Mitigation
Status and Comments read-only.
- Click Add.
Click Add Mapping next to the behaviour you added.
- In the Fields section, click Readonly.
In the Add Field dropdown menu, select Mitigation Status and
Comments and click Add.
In the following example, the Mitigation Status and Comments field in a Jira issue of an imported finding is shaded to indicate that it is read-only.