
Bitbucket Data Center 5.2.0 - 5.2.8
Add extra security to your developer workflow. Reject commits that contain passwords, private keys, cloud credentials, etc
Add extra security to your developer workflow. Reject commits that contain passwords, private keys, cloud credentials, etc
Add extra security to your developer workflow. Reject commits that contain passwords, private keys, cloud credentials, etc
Keep your secrets safe by blocking sensitive information such as passwords, public keys, access keys, etc. from being checked into your git repositories
User our Security Scan Report to see what vulnerabilities exist in each individual Bitbucket Project, repository and branch
Security for Bitbucket Server detects over 30 specific credential and key patterns, like public keys, private keys, passwords, AWS keys, SSH keys and more. You can also add your own patterns using our custom rules page!
Keep your secrets safe by blocking sensitive information such as passwords, public keys, access keys, etc. from being checked into your git repositories
User our Security Scan Report to see what vulnerabilities exist in each individual Bitbucket Project, repository and branch
Security for Bitbucket Server detects over 30 specific credential and key patterns, like public keys, private keys, passwords, AWS keys, SSH keys and more. You can also add your own patterns using our custom rules page!
More details
Download now to detect and block users from checking in sensitive information such as passwords, public keys, access keys, etc. Protect your company from this common error that can be exploited by attackers!
✅ Feature highlights:
- Pre-receive hook to reject dangerous pushes
- Repository scanning to analyze previously committed code
- Trigger scans for individual repositories or a whole Bitbucket instance
- Hook can be enabled per repository, per project, or globally
- Built-in rules for many common vulnerabilities, such as ssh keys and API tokens
- Define your own custom scanning rules, globally or on per-repository level
😀 More apps you’ll like:
- Catch sensitive data in Confluence pages with Security for Confluence
More details
Download now to detect and block users from checking in sensitive information such as passwords, public keys, access keys, etc. Protect your company from this common error that can be exploited by attackers!
✅ Feature highlights:
- Pre-receive hook to reject dangerous pushes
- Repository scanning to analyze previously committed code
- Trigger scans for individual repositories or a whole Bitbucket instance
- Hook can be enabled per repository, per project, or globally
- Built-in rules for many common vulnerabilities, such as ssh keys and API tokens
- Define your own custom scanning rules, globally or on per-repository level
😀 More apps you’ll like:
- Catch sensitive data in Confluence pages with Security for Confluence
Reviews for cloud
(6)Sign in to write a reviewReviews for server
(6)Sign in to write a review

Vamsina, please reference our documentation here. If it's not clear, you're welcome to open a support request in our portal and we'll help you with your setup.



Reviews for Data Center
(6)Sign in to write a reviewCloud Pricing
Server Pricing
Data Center Pricing
25 users$207/year | 50 users$380/year | 100 users$690/year | 250 users$1,380/year | 500 users$1,840/year | 1000 & upAdditional pricing details |
Pricing FAQ
- How does Data Center app pricing work?
Data Center apps are sold as an annual subscription. You are eligible for support and version updates as long as your subscription is active.
If app pricing changes after your initial purchase, there's a 60-day grandfathering period during which you can renew based on the old pricing.
- How do I determine my Data Center pricing?
Apps are billed based on the number of users in your Atlassian product. The app tier should match the licensed user tier of the Atlassian product. For example, if you have a Confluence license for 500 users, you should purchase the 500-user tier for apps. Even if fewer users want to use the app than your Atlassian product license, the two licenses should match exactly.
- Can I install this app in a Data Center product?
Yes, this app has a Data Center approved version. If you're using a Data Center product, you should install the Data Center version of the app.
- What type of license do I need if I'm using this app in a Data Center product?
Because this app has a Data Center approved version, you should purchase a Data Center license for the app.
If you already own a server license for this app, you can continue using the server license in your Data Center product for a limited period of time.
- Do you offer academic, community, or open-source licenses for Data Center apps?
For Data Center apps, academic licenses are available at a 50% discount if you have an academic license for your Atlassian product.
Community and open-source licenses are not available for Data Center apps. Learn more about community and open source licenses.
- Can I extend my free trial?
For Data Center apps, you can extend your app trial up to 5 times - in other words, for up to six months. Extend your trial by generating a new evaluation license key from Atlassian Marketplace. Click Try it free and you'll be directed to generate a new license. Paste this license key into the app listing in UPM from your Atlassian product, and you're all set.
Soteri provides support for this app.
Soteri provides support for this app.
Vendor support resources
Find out how this app works.
Vendor support resources
Find out how this app works.
Versions
Version 2.0.0 • Bitbucket Server 5.3.0 - 7.12.0 • Released 2021-03-01
Summary
Rebranding, new features in global dashboard, bugfixes
Details
- SOTERIA-167 Rebranding -- full announcement here
- SOTERIA-168 Fix table names (1.13.0 inadvertently used incorrect table names). If you're upgrading from 1.13.0, any scans performed *on* version 1.13.0 will become inaccessible and will have to be repeated. Upgrading from other versions works as expected.
- SOTERIA-87 Add option to view personal repositories in the global dashboard.
- SOTERIA-138 Export & download a global scan report
- SOTERIA-93 Allow filtering between public and private repositories in the global dashboard.
- SOTERIA-152 Fix exception setting number of scanner threads with Java 10+
- SOTERIA-155 Fix a timeout of the total_rescan REST API endpoint
- SOTERIA-157 Fix errors with extremely long (>255) file names or branch names
- SOTERIA-160 Fix pre-receive hook failures when pushing submodules
- SECURITY-52 Update depedent library versions to avoid false positive CVEs in dependency scanners
- SOTERIA-163 Initial commit was being missed by the pre-receive hook
Versions
Version 2.1.0 • Bitbucket Data Center 5.3.0 - 7.12.0 • Released 2021-04-05
Summary
Add warn-only mode to the pre-receive hook
Details
SOTERIA-34 The pre-receive hook can now be configured to generate a warning to the pusher but allow the push
Installation
- Log into your Bitbucket instance as an admin.
- Click the admin dropdown and choose Add-ons. The Manage add-ons screen loads.
- Click Find new apps or Find new add-ons from the left-hand side of the page.
- Locate Security for Bitbucket via search. Results include app versions compatible with your Bitbucket instance.
- Click Install to download and install your app.
- You're all set! Click Close in the Installed and ready to go dialog.
To find older Security for Bitbucket versions compatible with your instance, you can look through our version history page.
- Log into your Bitbucket instance as an admin.
- Click the admin dropdown and choose Atlassian Marketplace. The Manage add-ons screen loads.
- Click Find new apps or Find new add-ons from the left-hand side of the page.
- Locate Security for Bitbucket via search. The appropriate app version appears in the search results.
- Click Try free to begin a new trial or Buy now to purchase a license for Security for Bitbucket. You're prompted to log into MyAtlassian. Security for Bitbucket begins to download.
- Enter your information and click Generate license when redirected to MyAtlassian.
- Click Apply license. If you're using an older version of UPM, you can copy and paste the license into your Bitbucket instance.
To find older Security for Bitbucket versions compatible with your instance, you can look through our version history page.