Bitbucket Pipeline Setup for Local Code Scanning

Documentation Index

Fetch the complete documentation index at: https://docs.cybedefend.com/llms.txt

Use this file to discover all available pages before exploring further.

​

Prerequisites

• Personal Access Token (PAT): Create it and store in Bitbucket’s Repository Settings → Pipelines → Repository Variables (e.g., CYBEDEFEND_PAT).
• Bitbucket Pipelines: Enable pipelines in your repository.

​

Example bitbucket-pipelines.yml

image: ubuntu:latest

pipelines:
  default:
    - step:
        name: CybeDefend Local Scan
        caches:
          - apt
        script:
          - apt-get update && apt-get install -y curl
          - curl -L https://github.com/CybeDefend/cybedefend-cli/releases/download/v1.0.0/cybedefend-linux-amd64 -o cybedefend
          - chmod +x cybedefend
          - mv cybedefend /usr/local/bin/
          - cybedefend scan --dir . --ci --project-id $CYBEDEFEND_PROJECT_ID

​

Explanation

1. image
   ubuntu:latest is sufficient for installing cURL and the CLI.
2. Install CLI
   Similar approach as other platforms.
3. Run the Scan
   Use environment variables $CYBEDEFEND_PAT and $CYBEDEFEND_PROJECT_ID defined in Bitbucket’s pipeline settings.

​

Where to Check Results

1. Pipeline Logs: The CLI’s console output shows a summary.
2. Local Results: Optionally fetch sarif or html outputs in subsequent steps:
   cybedefend results --project-id $CYBEDEFEND_PROJECT_ID --output html --filename bitbucket-scan.html
   
3. CybeDefend Dashboard: Provides a deeper analysis of all vulnerabilities discovered.