Loading...

XML

Word

Printable

Details

Type: Suggestion
Resolution: Fixed
Fix Version/s: 8.3.0, 8.5.0
Component/s: None
Labels:
None

UIS:
14
Feedback Policy:

We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

Description

Atlassian status as of Oct 2022

Hi everyone,

I'm happy to announce that in Bitbucket Data Center 8.3 we released Secret scanner. It checks commits for secrets after they get into repositories. Secret rules can be configured as regex expressions on global, project and repository level. Scanner also has an allow-list for secrets to help minimize false positive results, and an exempt-list for repositories that don't need scanning. We plan to keep on enhancing Secret scanner in the future to help you get the most out of Bitbucket Data Center.

You can find more information about Secret scanner in the docs.

Cheers,
Anton Genkin
Product Manager - Bitbucket Data Center

Origin

Please implement the the ability to detect and thwart stored passwords in an effort to prevent users from accidentally or on purpose storing passwords in plain text in Bitbucket commits.

Attachments

Issue Links

relates to

BSERV-11064 Sensitive data removal and tracking for Bitbucket

Gathering Interest

BSERV-13538 Prevent secrets from getting into repositories

Gathering Interest

mentioned in: Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Kim Wall

Votes:: 29 Vote for this issue

Watchers:: 12 Start watching this issue

Dates

Created:: 15/Nov/2018 9:43 PM

Updated:: 27/Oct/2022 7:09 AM

Resolved:: 27/Oct/2022 7:09 AM