Aikido repo integration for Bitbucket

for Bitbucket Cloud
  • Supported
Free app

Manage your web app's security in a single platform

Get an overview of all your security issues

All-in-one AppSec platform for code & cloud security - Without the irrelevant alerts.

Only get alerts that matter to you

Aikido shows you which issues are exploitable. By deduplication & auto-triage aikido will only notify you about relevant issues.

Supports your tech stack & languages

Whatever tech stack or language you use, AIkido aims to support it.

More details

Aikido brings together tooling that you otherwise have to set up manually, or buy at expensive prices. We focus on cutting out the false positives.

Scans the following:

- Dependency vulnerabilities (SCA) with reachability analysis: scans which functions actually expose you (alternative for Trivy, Dependabot, Renovatebot or Snyk)

- Open-source license risks: checks for dual, non-reputable, or risky licenses (alternative for manual export, BlackDuck, or Fossology)

- Cloud posture (CSPM): (mis)config checks on your AWS, GCP & Azure (alternative for CloudSploit, AWS inspector, or Orca)

- Leaked & exposed secrets: API keys, passwords, encryption keys, etc. (alternative for Gitguardian or Gitleaks)

- Static Code Analysis (SAST): checks your code for security risks

- Surface Monitoring (DAST): implements OWASP ZAP and dynamically tests domains (alternative for Detectify)

- Infrastructure as Code scanning: Kubernetes, Terraform, ... (alternative for Checkov)

Privacy and security

Privacy policy

Atlassian's privacy policy is not applicable to the use of this app. Please refer to the privacy policy provided by this app's partner.

Partner privacy policy