The Bitbucket Holes: Why Your CI/CD Pipeline Leaks

This blog post describes how Bitbucket Secured Variables leaks in pipelines can compromise security

It is an Atlassian code hosting platform that comes with Bitbucket Pipelines, an integrated continuous integration and delivery/ deployment (CI/CD) service

Secrets are strong and sought after by attackers because they allow direct, uncontrolled access to an environment

It gives programmers a mechanism to save variables for easy access when developing code

Furthermore, it provides the ability to designate a variable as a “secured variable” for any sensitive data

Recent research suggest that it may be a Bitbucket artefact object with AWS secrets that is being made public to S3 Buckets or corporate websites

An excellent platform for code storage, collaboration, and deployment is Bitbucket Pipelines