Security for Bitbucket Documentation
Run security audits for committed API keys, passwords, and more. Protect your dev workflow against accidental credential leaks.
Frequently Asked Questions (FAQ) and Troubleshooting
- How to bypass the pre-receive hook for a single commit?
- How to trigger a full Bitbucket rescan?
- Using exports to globally review findings
- Enabling debug logging
- How to get notified when a large scan completes?
- What do I do if a security scan finds a secret?
- Scan Performance Tuning
- Mitigating Trojan Source attacks
- Viewing Audited Events
- Known Incompatibilities
- What happened to the Rescan button?
- What is the GENERIC_PASSWORD rule and why is it disabled by default?
- Why are some scanning rules disabled by default?
- Why isn't Security for Bitbucket finding my passwords?
- Why is the pre-receive hook rejecting my commit with no explanation?
- Accessing Soteri Security Settings