Hi everyone,
I'm happy to announce that in Bitbucket Data Center 8.3 we released Secret scanner. It checks commits for secrets after they get into repositories. Secret rules can be configured as regex expressions on global, project and repository level. Scanner also has an allow-list for secrets to help minimize false positive results, and an exempt-list for repositories that don't need scanning. We plan to keep on enhancing Secret scanner in the future to help you get the most out of Bitbucket Data Center.
You can find more information about Secret scanner in the docs.
Cheers,
Anton Genkin
Product Manager - Bitbucket Data Center
Origin
Please implement the the ability to detect and thwart stored passwords in an effort to prevent users from accidentally or on purpose storing passwords in plain text in Bitbucket commits.
- relates to
-
BSERV-11064 Sensitive data removal and tracking for Bitbucket
- Gathering Interest
-
- Gathering Interest