The user generates a unique Bitbucket “app password” that they generate for Snyk specifically. Together the user’s username and password constitute a token that Snyk uses. The token authorizes Snyk to access the user’s repos for only the specific permissions that the user indicates to Bitbucket Cloud when generating it.
Snyk integrates with Bitbucket Cloud to enable you to import your projects and monitors the source code for your repositories. Snyk tests the projects you’ve imported for any known security vulnerabilities found in the application’s dependencies, testing at a frequency you control.
Integration with Bitbucket Cloud is available for all of our pricing plans.
Enable integration between Bitbucket and Snyk, and start managing your vulnerabilities.
Ensure you have set up your Bitbucket Cloud account and your Snyk account.
Access your Bitbucket Cloud account and retrieve a unique app password for Snyk. For help doing this, see the Bitbucket documentation.
When prompted, enable the following permissions for Snyk access as follows:
Pull requests—read and write
Webhooks—read and write
Log in to your Snyk account.
Navigate to Integrations from the menu bar at the top.
From the Integrations page under the Bitbucket Cloud logo, click the Connect to Bitbucket Cloud button:
From the Settings page, enter your Bitbucket Cloud username and the app password that you just generated.
Snyk tests the connection values and the page reloads, now displaying Bitbucket Cloud integration information. A confirmation message that the details were saved also appears in green at the top of the screen. In addition, if the connection to Bitbucket failed, a notification appears under the Connected to Bitbucket Cloud section.
Snyk tests and monitors Bitbucket repositories that are in any of our supported languages by evaluating root folders and custom file locations.