Hi Tamir,
I don't see a Bitbucket Cloud account in our system with the email of the community account that you used to post this question. I assume that you have an account with a different email?
There is an Audit log available for every account at https://bitbucket.org/account/settings/auditlog/, but I'm afraid that it doesn't show events about when an app password was used.
I suggest that you open a ticket with Bitbucket Cloud support team via https://support.atlassian.com/contact/#/. Depending on the time frame that the app password was leaked, the support team may be able to check internal logs and let you know if any operations were performed by your account with an app password and also IP addresses for these events, so you can compare with the IP addresses that you normally use. Please make sure to open the support ticket by logging in with the same email as your Bitbucket Cloud account's primary email. In the field "What can we help you with?" select "Technical issues and bugs" and then Bitbucket Cloud as product.
Please feel free to let me know if you have any questions.
Kind regards,
Theodora
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.