Bitbucket Repository Access Token

Description

General

Documentation: https://bitbucket.org/
Summary: Bitbucket is a Git-based source code repository hosting service. It is a part of the Atlassian products. Access tokens for a repository are per-repository passwords for scripting tasks and integrating tools (such as CI/CD tools) with Bitbucket Cloud.
IPs allowlist: This feature is not available.
Scopes: It is possible to configure specific scopes when creating the access tokens.

Revoke the secret

Secrets can be revoked through the admin interface: https://bitbucket.org/[workspace_name]/[repository_name]/admin/access-tokens

Check for suspicious activity

No usage information is available in the dashboard.

Details for `Bitbucket Repo Access Token`

Family: token
Category: version_control_platform
Company: Atlassian
High recall: False
Validity check available: True
Analyzer available: True
On-premise instances exist: False
Only valid secrets raise an alert: True
Minimum number of matches: 1
Occurrences found for one million commits: 0.09
Prefixed: False
PreValidators:

- type: ContentWhitelistPreValidator
  patterns:
    - atctt3x
- type: ContentWhitelistPreValidator
  patterns:
    - bitbucket

Examples

- text: bitbucket_access_token=ATCTT3xFfGN0Zj82epTRI8UyjhsKXIfAfDSFdJiMVwktsTAIsg-fcKyAlkK3cFiHo9hJRB5Nc0sZhg8BYSY0HQjHQgDp75wWSvr-puB6nWvjDledLKYDKOvbFJ01-iMkZu6J_KF7eKU88t67YALjS30xtfdM-Su4-KMShZa6ADqYTAXPRAiuLfg=F41864D1
  apikey: ATCTT3xFfGN0Zj82epTRI8UyjhsKXIfAfDSFdJiMVwktsTAIsg-fcKyAlkK3cFiHo9hJRB5Nc0sZhg8BYSY0HQjHQgDp75wWSvr-puB6nWvjDledLKYDKOvbFJ01-iMkZu6J_KF7eKU88t67YALjS30xtfdM-Su4-KMShZa6ADqYTAXPRAiuLfg=F41864D1

Secret Analyzer

Analysis Method

Provider allows scopes enumeration: False
Total network call count: 2
Total call count may vary: True

HTTP Calls

Requests are designed to capture metadata and not to function effectively.

GET: /2.0/repositories?role=member
HEAD: /2.0/repositories

Other Calls

Non-HTTP queries or HTTP calls made through a third-party app (e.g., Python package). No other calls for this analyzer.

Bitbucket Repository Access Token

Description

General

Revoke the secret

Check for suspicious activity

Details for `Bitbucket Repo Access Token`

Examples

Secret Analyzer

Analysis Method

HTTP Calls

Other Calls

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Description​

General​

Revoke the secret​

Check for suspicious activity​

Details for Bitbucket Repo Access Token​

Examples​

Secret Analyzer​

Analysis Method​

HTTP Calls​

Other Calls​

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Subscribe to our newsletter

Description

General

Revoke the secret

Check for suspicious activity

Details for `Bitbucket Repo Access Token`

Examples

Secret Analyzer

Analysis Method

HTTP Calls

Other Calls