Legal and trust

Permissions and scopes

The Forge scopes requested by StatusDeck and the reason each scope is required.

StatusDeck for Jira Cloud Last updated: 12 July 2026

Current manifest scopes

permissions:
scopes:
  - read:jira-user
  - read:jira-work
  - read:project:jira
  - read:board-scope:jira-software
  - read:sprint:jira-software
  - read:issue-details:jira
  - read:jql:jira
  - read:user:jira
  - storage:app

Scope purposes

ScopePurpose
read:jira-userRead authorised user display information needed for assignee-oriented reporting.
read:jira-workRead Jira work items and related fields required for sprint reports.
read:project:jiraList and identify Jira projects available to the current user.
read:board-scope:jira-softwareRead Jira Software board information for board selection.
read:sprint:jira-softwareRead sprint names, dates, goals, state and related sprint information.
read:issue-details:jiraRead authorised issue-level detail used in reports and exports.
read:jql:jiraRun Jira searches needed to collect issues for the selected report context.
read:user:jiraRead authorised Jira user details such as display names used in reports.
storage:appStore short-lived report caches and per-user fair-use counters in Atlassian-hosted Forge storage.

No write access

The current manifest does not request Jira write scopes. StatusDeck is designed as a read-focused reporting app and does not modify Jira issues, projects, boards or sprints.

Scope changes

QTI Labs will review, document and minimise scopes. Material additions will be reflected on this page and may require administrator re-consent through Atlassian.

Effective date: upon first public availability of StatusDeck on the Atlassian Marketplace. Review at least annually and after material product, scope, storage, subprocessor, security or legal changes.