AUDITOR FOR BITBUCKET

Automated policy and security enforcement

Auditor for Bitbucket

An Atlassian application that provides tools you need to enforce company policies, prevent data leaks, and keep control of your data.

Perform dry runs safely

We allow you to perform a dry run without putting your data at risk

Advanced cleanup rules

We offer a number of preconfigured rules as well as the ability to set your own.

Robust global configuration

Control the number of backups you retain and when automated jobs run

Prerequisites:

● SSH support and SSH access keys are enabled on Bitbucket server

● If you want to use the Migrate to Git LFS functionality you will need Git LFS support enabled in Bitbucket and git-lfs tool is installed on the Bitbucket server.

● A user with ADMIN permission for all repositories which you want to impact. This user needs to be set in the Global Configuration.

● Sufficient free disk space to perform modifications to the repository. This can be up to 5x the size of your largest repository.

» Repo + Backup + Working Copy + Working Copy during Pack (grows in size till completion then deletes old working copy) + SCM cache

Features:

  • Cleanup repositories with pre-made and user configurable rules
  • Migrate existing repository data to Git LFS
  • Schedule recurring jobs to ensure that configured rules are enforced
  • Run parallel jobs in Bitbucket Datacenter with monitoring and queue capabilities
  • Automated repository backups prior to making any changes
  • Provide configurable retention duration for backups
  • Repositories are automatically locked during processing to prevent any external changes (push, open/merge pull request, create branch, etc)
  • The following receive email notifications when a repository is changed by Auditor for Bitbucket:

» All repository members with WRITE permission
» The user who started the job
» System user for recurring job runs

FAQs

Q: What is it compatible with?

A: Atlassian Bitbucket Server

Q: What are some known issues?

• Pull request can be reopened while auditor is running (no corresponding cancellable event provided by bitbucket) causing push fail (https://community.atlassian.com/t5/Bitbucket-questions/Git-push-failure/qaq-p/283290)

• Default hook.callback.buffer.capacity (5MB) is not enough to push mirror of large repositories. The workaround is to increase it via bitbucket.properties file or JVM parameters.

• Large repositories post-recieve hook may fail with OutOfMemoryError in Bitbucket. The workaround is to increase the maximum heap size.

• May fail with org.eclipse.jgit.errors.LargeObjectException$ExceedsLimit for some repositories. The workaround is to increase limit using “Max non-file object size” parameter in job configuration.

If you’re still facing trouble, please reach out to our service desk here.