Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-23917

Add Support for NPM Trusted Publishing via OIDC in Bitbucket Pipelines

XMLWordPrintable

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Issue
      Currently, Bitbucket Pipelines does not support NPM Trusted Publishing using OIDC. Following the NPM security incident in mid-September 2025, NPM is deprecating token-based authentication and requiring publishers to adopt OAuth and Trusted Publishing. 

      Github and GitLab are providing integration relying on Trusted Publishing - https://docs.npmjs.com/trusted-publishers

       

      Suggestion
      It is recommended to introduce native OIDC integration for NPM Trusted Publishing in Bitbucket Pipelines. 

              Unassigned Unassigned
              310cf44759d0 Suyog Rajendra Deshpande
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: