The Bitbucket Holes: Why Your CI/CD Pipeline Leaks
This blog post describes how Bitbucket Secured Variables leaks in pipelines can compromise security
It is an Atlassian code hosting platform that comes with Bitbucket Pipelines, an integrated continuous integration and delivery/deployment (CI/CD) service
Secrets are strong and sought after by attackers because they allow direct, uncontrolled access to an environment
It gives programmers a mechanism to save variables for easy access when developing code
Furthermore, it provides the ability to designate a variable as a “secured variable” for any sensitive data
Recent research suggest that it may be a Bitbucket artefact object with AWS secrets that is being made public to S3 Buckets or corporate websites
An excellent platform for code storage, collaboration, and deployment is Bitbucket Pipelines