Security for Bitbucket

Delivery by e-mail

confirmation by e-mail

Configure your License

If you're interested in an update, renewal or downgraden you should give us the service entitlement number (SEN-Number) of the license

Reset configuration
** Required fields
  • CWX-100001221399
  • 166
  • 984
  • 4
More details Any user can check in sensitive information such as passwords,... more
Product information "Security for Bitbucket"

More details

Any user can check in sensitive information such as passwords, public keys, access keys, etc. into a git repository. Bitbucket does not have a way to eliminate or detect and block users who exhibit this behavior; the typical developer workflows make this an easy omission even by well-intentioned users. This poses a very large security risk as this information could be passwords for network devices, private keys, or even personal credentials for highly sensitive systems. This can lead to privilege escalation, either by malicious users who have network access to the Bitbucket server, or by an external attacker who has bridged perimeter security.

Our application integrates into Bitbucket and detects and blocks sensitive information from being checked in.


  • Repository vulnerability scanning reports.
  • Global level hook enforcement
  • Use our built-in rules to scan for vulnerabilities or define your own.
  • Repository level customization using mohami-security.yml config files.
Related links to "Security for Bitbucket"
Read, write and discuss reviews... more
Customer evaluation for "Security for Bitbucket"
Write an evaluation
Evaluations will be activated after verification.

The fields marked with * are required.