Security for Bitbucket DC Documentation
Security for Bitbucket DC Documentation
Run security audits for committed API keys, passwords, and more. Protect your dev workflow against accidental credential leaks.
-
Overview
-
Scanning Every Push with the Soteri - Scan Commits Security Hook
-
The Soteri Global Dashboard: Viewing Bitbucket's Overall Security Status
-
Project Dashboard
-
Repository Dashboard
-
Branch Security Analysis
-
Exporting a report for external use
-
Hiding false positives, revoked credentials, etc.
-
Allow-listing Detected Secrets
-
Enabling and Disabling Global Detection Rules
-
Defining Global Custom Detection Rules
-
Granting App Access to Additional Users and Groups
-
Viewing Audited Events
-
Customizing the hook messages
-
Defining Repository-Level Detection Rules
-
REST API for Scripting and Automation
-
REST API for Mass Scanning
-
Built-In Scanning Rules
-
Example Scan Findings Detected
- Accessing Soteri Security Settings
- Enabling debug logging
- Creating support zips
- How to bypass the pre-receive hook for a single commit?
- How to trigger a full Bitbucket rescan?
- Using exports to globally review findings
- How to get notified when a large scan completes?
- What do I do if a security scan finds a secret?
- Scan Performance Tuning
- Mitigating Trojan Source attacks
- What is the GENERIC_PASSWORD rule and why is it disabled by default?
- Why are some scanning rules disabled by default?
- Why isn't Security for Bitbucket finding my passwords?
- Why is the pre-receive hook rejecting my commit with no explanation?
- Why is Security for Bitbucket taking up so much space in my database?
- Troubleshooting PostgreSQL Error When Upgrading: "cached plan must not change result type"
- Why are newline matchers not allowed in custom rules?
-
Security for Bitbucket Data Center Cookbook