Set up BitBucket


Integrating with Bitbucket enables oak9 to scan for any IaC files within a repository with the end result of pinpointing any existing security design gaps as well as potentially fixing those configurations via pull requests. This process is done:
  • Continuously: oak9 triggers these scans once a day to ensure full monitoring of your repository
  • Autonomously: this process is 100% automatic. After integration, you’ll never have to trigger a scan manually on your end (though you will always still have this option!). That’s right, no more button clicking!
  • Securely: we prioritize client confidentiality and security. We only ask for the permissions absolutely necessary to run this workflow and we ensure that none of your code is kept in our system after execution
  • Seamlessly: oak9 and Bitbucket work together as essentially, a single application

How to Integrate:

  1. 1.
    Click on the Integrations icon in the navigation bar on the left
2. Navigate to the “Integrations” page and click on the “Add Integration” button under Bitbucket in the Repository Integrations section
4**.** Click Open Bitbucket
5**.** After being routed to a new page, Click Grant Access
6**.** After being routed back to the model, a list of your Bitbucket repos (followed by the workspace name in parenthesis) will appear. Select the repos you want to be able to scan.
7. Once a repo is selected, there will be a drop down of all the projects. Select a project that the repo should be paired with or select Create New Project. If a project is not selected, one will be created with the following name: {Bitbucket username}/{Repository name}
8. Once the desired repos is selected, click save on the bottom right
9. Within a few seconds you should be able to see that your validation has completed
10. You’ll next receive an email from bitbucket (or a member of your admin team) with information relating to a newly created PR by the oak9io bot (should you not receive an email it’s still probably the PR was created). Some of the information included in this email will be:
  • The title of the PR
  • A high-level summary of the design gaps found
  • A link to the PR
  • A link to the validation results
  • The number of files changes
  • A commit messages with a date stamp included
11. Login to bitbucket and try to find a newly created PR
12. Click on the Pull Request Hoorah! You’ve integrated with Bitbucket and have validated your IaC code. Get working on getting those changes in if you have any!