The Zurich release has arrived! Interested in new features and functionalities? Click here for more

GRC- Control attestation & Issue Creation

AkrityP
Tera Contributor

‎08-18-2025 07:03 AM

What are the instances that Issue will be automatically created? i wanted to turn off automatic issue creation. I see there is a script include GRCAssessmentUtilsBase & I see some scripts there for issue creation. Apart from that what other places do I need to update to stop auto creation of issues?
Also how to deal with this OOB script include - as in what changes I need to do so that nothing is skipped?

0 Helpfuls
  • 410 Views
3 REPLIES 3

Rafael Cardoso
Tera Guru
Tera Guru

‎08-19-2025 03:31 AM - edited ‎08-19-2025 03:47 AM

Why do you need to prevent the automatic issue creation?  

 

While preventing automatic issue creation can provide greater control, reduce noise, and ensure that only meaningful, validated Issues are logged, it also carries important trade-offs. By manually selecting which Issues to create, the organization risks bypassing the standard Issue process, and the reported control status (compliant/non-compliant) may become unreliable, reflecting only the Issues that are manually reported rather than all actual failures.

 

The function responsible for creating Issues automatically is _createAttestationIssue(). Disabling or bypassing this function goes against the very purpose of attestations, as it prevents the system from flagging non-compliance. In essence, the organization is no longer truly following the intended process, which undermines the reliability of control status and the integrity of the overall GRC framework.

Raf


Helpful post? Don’t forget to bookmark it, give it kudos, or mark it as the answer to help the community grow!

0 Helpfuls

Rafael Cardoso
Tera Guru
Tera Guru

a month ago - last edited a month ago

I submitted an enhancement request to add a property that lets customers decide whether an issue should be created automatically after a failed attestation. This means raising an issue will remain as a manual action if the property is false.

Raf


Helpful post? Don’t forget to bookmark it, give it kudos, or mark it as the answer to help the community grow!

0 Helpfuls

Rakesh Chigari
Tera Guru

4 weeks ago

@AkrityP  YEs, it is not best practice to turn off auto generation of issue , i hope you have validated its impact. issue will be auto generated in below instance 

1. Attestation failure ( control not implemented)

2. Indicator  failure 

3. Control Test failure 

0 Helpfuls