Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-13538

Prevent secrets from getting into repositories

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Unresolved
    • None
    • Security - Other
    • None
    • 41
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Bitbucket Data Center has a secret scanner that scans commits for secrets (passwords, access tokens, etc) as a post-receive hook. Secret scanner works like this so that it doesn't impact performance of git, and doesn't block developers in case of false positive detections. However, it would be great to add a pre-receive hook, so that commits containing secrets can be rejected without getting into a repository.

      Attachments

        Issue Links

          is related to

          Suggestion - BSERV-11435 Detect and prevent passwords in Bitbucket commits

          • Closed

          Suggestion - BSERV-11064 Sensitive data removal and tracking for Bitbucket

          • Gathering Interest
          mentioned in

          Page Loading...

          Page Loading...

          Activity

            People

              Unassigned Unassigned
              agenkin Anton Genkin (Inactive)
              Votes:
              6 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated: