AppSec Assistant

1. What is the core functionality of AppSec Assistant?

AppSec Assistant's core functionality is to streamline security workflows within the Jira Cloud by providing intelligent, AI generated security recommendations. These recommendations enable developers to create software that is secure by design.

2. How does AppSec Assistant integrate with Jira Cloud?

AppSec Assistant integrates with Jira Cloud as a plugin. It uses AI to generate security suggestions specific to each ticket directly within the cloud environment. It also supports custom deployments by enabling usage of user's own Language Model (LLM) or General AI (GEN-AI) infrastructure.

3. What type of security recommendations does AppSec Assistant provide?

AppSec Assistant provides AI-powered security recommendations specific to each ticket within the Jira Cloud, enabling ease of review and integration into the development workflow. The exact nature of these recommendations will depend on the specific security issues associated with each ticket.

4. How does AppSec Assistant ensure data control and security?

AppSec Assistant ensures data control and security by keeping user data, including OpenAI API keys, within trusted environments. It also uses Atlassian's Storage API for encryption and safekeeping of OpenAI API key information.

5. What is required for the setup of AppSec Assistant?

To set up AppSec Assistant, an individual needs to include their OpenAI API key. Optionally, they can also add their organization's details as a further level of specificity and control.

6. How does AppSec Assistant utilize the OpenAI API key?

AppSec Assistant uses the OpenAI API key to generate intelligent, context-specific security recommendations. User's OpenAI API key is encrypted and securely stored using Atlassian's Storage API.

7. How does AppSec Assistant use Atlassian's Storage API?

AppSec Assistant uses Atlassian's Storage API to encrypt and store user's OpenAI API key information. This ensures high levels of data control and security.

8. How does AppSec Assistant contribute to the efficiency of the Software Development Life Cycle (SDLC)?

AppSec Assistant contributes to the efficiency of the Software Development Life Cycle (SDLC) by reducing time spent on manual application security (AppSec) reviews. It provides security recommendations tailored to each ticket which allows for integration of security considerations right from the start of the development process.

9. How does AppSec Assistant impact time spent on manual application security reviews?

AppSec Assistant impacts the time spent on manual application security reviews by significantly reducing it. By providing AI-powered, context-specific security recommendations instantly, it lessens the need for extensive manual reviews.

10. Can AppSec Assistant be customized for different workflows in Jira Cloud?

Yes, AppSec Assistant allows for customization based on different workflows within the Jira Cloud.

11. Can I utilize my own Language Model (LLM) or General AI (GEN-AI) infrastructure with AppSec Assistant?

Yes, AppSec Assistant enables usage of your own Language Model (LLM) or General AI (GEN-AI) infrastructure. This can be done as part of its support for custom deployments within the Jira Cloud.

12. How does AppSec Assistant assist in creating software that is secure by design?

AppSec Assistant assists in creating software that is secure by design by providing intelligent security recommendations within the Jira Cloud. These suggestions help developers to integrate security considerations at the beginning of the development process.

13. What does the process look like for getting security recommendations with AppSec Assistant?

With AppSec Assistant, security recommendations are generated by AI and are specific to each ticket within the Jira Cloud. This information can be accessed with a simple click, making it easy for developers to integrate these insights into their workflow.

14. Does AppSec Assistant allow developers to work at a faster pace?

AppSec Assistant allows developers to work at a fast pace by streamlining security reviews. By providing instant, AI-powered security recommendations, it reduces the time developers have to spend on manual AppSec reviews.

15. What measures does AppSec Assistant take to ensure the encryption and safety of OpenAI API key information?

AppSec Assistant uses Atlassian's Storage API to encrypt and safely store user's OpenAI API key information. This ensures that sensitive data remains within a secure, trusted environment.

16. How can I add my organization's details to AppSec Assistant?

Adding your organization's details to AppSec Assistant is an optional part of the setup process. This can offer an added layer of specificity and control in the security process.

17. Is there a trial version of AppSec Assistant available in Atlassian Marketplace?

Yes, a trial version of AppSec Assistant is available in the Atlassian Marketplace. Users can test its functionality prior to making a commitment to purchase.

18. Are there any specific system requirements for the installation and use of AppSec Assistant?

AppSec Assistant is a Jira plugin and as such, it requires Jira Cloud for its operation. No other specific system requirements have been mentioned on their website.

19. Does AppSec Assistant support custom deployments within Jira Cloud?

Yes, AppSec Assistant supports custom deployments within Jira Cloud. Users can utilize their own Language Model (LLM) or General AI (GEN-AI) infrastructure as a part of these deployments.

20. Where can I find support or customer service for AppSec Assistant?

Support for AppSec Assistant can be found by following the support link provided on their website. This link redirects to a service desk, where users can request assistance and explore potential solutions to any issues they may encounter.