Login Start Free Trial Login Start Free Trial
 

Atlassian Bitbucket

Bitbucket

StackHawk’s official Bitbucket integration.

This feature is available on the StackHawk Enterprise plan.

Overview

The StackHawk Bitbucket integration lets you connect your code through your Bitbucket workspace to unlock API Discovery with HawkAI via the Attack Surface screen.

The integration requires a Bitbucket Workspace Access Token with permissions to your Bitbucket repositories.

Features

  • Identify all of your testable APIs and Web Applications giving you a full picture of your organizations Attack Surface.
  • Gain insight into your Attack Surface through repository insights including identified Frameworks and commit activity, helping you prioritize what to get under test with StackHawk.
  • Easily create Applications from your code and connect repositories to existing StackHawk applications.

Requirements

StackHawk:

  • You must have a StackHawk account.

Bitbucket:

  • You must have permissions to manage the Bitbucket workspace you wish to add the integration to.
    • You must have READ permissions to repositories in your Bitbucket workspace.
    • You must be able to create a Workspace access token with read for repositories in the Bitbucket workspace you wish to integrate with.

Permissions

With this integration you authorize StackHawk with the following permissions:

  • Repositories -> Read access to the connected Bitbucket workspace.

Installation

  1. Log into StackHawk and visit the Bitbucket Integration page in StackHawk.
  2. Click Connect Bitbucket.
  3. Follow the prompts in this modal to provide your Workspace name, and access token.
  4. This modal will verify a successful connection after you have provided all the required information to connect.

Usage

Configuration

Configuration of Bitbucket happens on the Attack Surface screen where you can view the repositories in your attack surface and map them to Applications in your StackHawk account.

Connecting Multiple Bitbucket Workspaces

StackHawk supports connecting multiple Bitbucket workspaces through the integrations screen. Simply click the Connect Bitbucket button to add an additional workspace and you will see it appear in the list below.

Updating Personal Access Token

You can update your Workspace access token by clicking the Manage button for the associated Bitbucket workspace and then Update to enter a new token.

Removing the Bitbucket Integration

The Bitbucket integration can be disconnected from the authorized StackHawk organization from the Bitbucket Integration page.

  1. Go to the Bitbucket Integration page in StackHawk.
  2. For each organization you want to remove, click Manage then Disconnect.
  3. Click Yes, Disconnect on the next prompt to confirm.

Troubleshooting

Repositories Not Showing Up in Attack Surface

There may be a delay from the time you connect your Bitbucket workspace and when Repositories are visible on the Attack Surface screen. For organizations with many repositories this can several minutes, however you will see a loading indicator on the Attack Surface and repositories will show up as they are processed.

Feedback

Have any suggestions, feature requests, or feedback to share? Contact StackHawk Support .