Skip to:

Security for Bitbucket Enhanced Secret Scanner by Soteri

by Soteri
works with Bitbucket Data Center 7.4.0 - 8.19.12 and more

OVERALL RATINGS

SUPPORT

  • Partner Supported

Key highlights of the appDetect sensitive data such as API keys and passwords with this powerful Bitbucket security scanner. Run audits & protect PII

watch Security for Bitbucket Enhanced Secret Scanner by Soteri video

Run Security Scans on Already-Committed Code

Run scans of already-committed content. Export results as downloadable reports, or drill down from the global status all the way to an individual branch via our interactive Security Scan Report.

Detect & Block Commits That Contain Sensitive Info

Accidentally committed secrets such as credentials, API keys, SSH keys, and passwords are a common vector for privilege escalation by attackers. Protect your organization by scanning and rejecting such commits.

Top Firms Use This Bitbucket Vulnerability Scanner

Private keys hiding in source code have damaged big firms. That's why top companies are proactively scanning their Bitbucket repositories for security vulnerabilities. Join these companies in taking a proactive approach.

Supporting media

More details

Bitbucket secret scanning to detect and block commits containing sensitive information such as passwords, API keys, and other secrets. Protect your company from this common error that can be exploited by attackers!

✨ Features ✨

  • Pre-receive hook to reject new commits with secrets
  • Enabled per repository, per project, or globally
  • Warn-only mode can notify about security issues without blocking commits
  • Git repository scanning to analyze existing code
  • Trigger scans for a repo, a project, or the whole Bitbucket instance
  • Downloadable reports of scan findings
  • Flexible workflows for false positives
  • REST API for scripting and automation
  • Built-in rules for commonly leaked secrets, such as ssh keys and API keys
  • Define your own custom secret scanning rules, globally or per-repo

See docs for more!

🔒 Your data stays secure and local. We don't phone home.

😀 Our other secret scanners you’ll like:

🗓 Want to know more? Book a demo

For Bitbucket 6, use v3.19.2

Resources

Privacy and Security

Privacy policy

Atlassian's privacy policy is not applicable to the use of this app. Please refer to the privacy policy provided by this app's partner.

Partner privacy policy

Security program

This app is part of the Marketplace Bug Bounty program.

About Bug Bounty program

Version information

Version 4.17.0for Bitbucket Data Center 7.4.0 - 8.19.12

Release date
Nov 22nd 2024
Summary
Adds support for file size limits, file skipping, and more granular exports.
Details

Note: Plugin data migrations contained in updates might cause Security for Bitbucket to be unresponsive for up to 20 minutes immediately after upgrading the plugin. Changes since the previous version:

  • Configuring a maximum scannable file size is now supported. For more information, please see the documentation.
  • Skipping specific files in per-repository configuration is now supported. For more information, please see the documentation.
  • Exporting project, repository, and/or branch findings now supports new 'reviewed' and 'allowlisted' parameters, for more granular reporting.
Payment model
Paid via Atlassian
Explore all Data Center versions

Learn and explore

  • What’s Marketplace
  • App installation
  • About Atlassian
  • Atlassian resources
  • Search and ranking
  • Atlassian events
  • Atlassian foundation

Follow