DevSecOps X-Ray for Atlassian Admins [July 2025]

G’day Atlassian Community! August is here — and so is your inside track on DevOps security. What were the most interesting news and updates of July, or what events and webinars are awaiting you this month? Let’s figure it out! Fresh off the press… GitProtect’s DevSecOps X-Ray for Atlassian Admins is here..

📚 News & Resources

Blog Post 📝 | July 2025 Security Bulletin: The vulnerabilities reported in this Security Bulletin include 20 high-severity vulnerabilities that have been fixed in new versions of Atlassian products, released in the last month. These vulnerabilities are discovered via the Bug Bounty program, pen-testing processes, and third-party library scans. To fix all the vulnerabilities impacting your product(s), Atlassian recommends patching your instances to the latest version or one of the Fixed Versions for each product mentioned in the given bulletin. 👉 Check out more

Blog Post 📝 | Atlassian’s Inference Engine, our self-hosted AI inference service: Atlassian built its own AI inference platform to replace third-party services and power LLMs, search, and moderation across its cloud products. With this shift, they’ve cut LLM latency by 40% and costs by over 60%. This post details the architecture, deployment model, optimization stack, and real-world impact of their solution. 👉 Find out more

Blog Post 📝| Security Compliance Best Practices: More organizations are shifting from checkbox compliance to strategic, risk-aware security processes. In this blog post, you will find best practices for aligning your security operations with leading frameworks, such as NIST, ISO 27001, SOC 2, HIPAA, and GDPR, focusing on automation, risk assessment, and backup as key pillars. 👉 Full article

Blog Post 📝 | Rovo drives a new era for conversational AI: Rovo Chat just got a major upgrade. It now delivers smarter, context-aware answers by understanding real connections between people, projects, and goals. Features like intent routing, personalized summaries, and clarification prompts help teams stay aligned and move work forward faster. 👉 Explore further

Blog Post 📝| Introducing parent/child pipelines: Bitbucket introduces parent/child pipelines. This is a powerful new feature that allows teams to modularize complex workflows and break through the 100-step limit. With better reusable pipeline structure and seamless reruns, this update simplifies large-scale CI/CD setups while minimizing build time and complexity. 👉 More information

Blog Post 📝| Become The Master Of Disaster: Disaster Recovery Testing For DevOps: Disaster Recovery isn’t just about recovering data - fast or faster. Rather, it’s about regularly testing whether your backups will work when it matters. Get into why DR testing is essential, see real-world disaster scenarios like ransomware, outages, or insider threats, and how GitProtect simplifies DR and guarantees compliance with standards like ISO 27001 or SOC 2. 👉 Find out more

🗓️ Upcoming events 

Virtual Event 🪐 | Advanced Admin Features Part 1 | ACP-520 Atlassian Cloud Org Admin Session | Aug 11, 3 PM (GMT+2): Check out this live 60-minute ACP-520 study session focused on Advanced Admin Features for Atlassian Cloud Org Admins. In this session, you will get insights into Admin APIs, application tunnels, and custom email addresses. This is great for exam prep or practical admin insights. A Cloud instance is recommended to follow along. 👉 Participate

Virtual Event 🪐 | Secure by Design: Building DevSecOps Pipelines with Atlassian | Aug 19, 6:00 – 7:00 PM (GMT+2): Security and speed should not be a tradeoff. In this session, you'll explore how teams are using the Atlassian platform to design, build, and manage DevSecOps pipelines in complex environments. Learn how other teams are using Jira, Bitbucket, and Bamboo to build secure, compliant pipelines that actually scale. 👉 RVSP Now

Webinar 🎙️ | DevOps Backup Academy: CISO Stories: Protecting Critical IP and DevOps data in highly-regulated industries | Wed, Aug 20, 2025 9 AM or 7 PM CEST: Protecting DevOps, source code, and critical Intellectual Property is no longer just an IT concern - it’s a board-level priority. Today’s CISOs must build data protection strategies that are both regulation-ready and breach-resilient. And those strategies shouldn’t overlook DevOps and SaaS data. Join this session to get real insights and real-world solutions. 👉 Sign up

✍️ Subscribe to GitProtect DevSecOps X-Ray Newsletter and always stay tuned for more news!