Community
Q&A
Bitbucket
Questions
How do I report a malicious repository?

How do I report a malicious repository?

I was contacted by someone posing as a recruiter on LinkedIn with a well-paid job offer. They asked me to complete a take-home task linked in a Google Doc, which references a Bitbucket repository containing malicious code that performs remote code execution. How can I report the malicious repository (https://bitbucket.org/top-hvd-2025/hvd-bard-2026)?

2 answers

1 vote

Hi @bennyn,

Welcome to Atlassian Community!

Send an email to abuse@atlassian.com with the information and that team will deal with it. Please note that you will not get a response back, but they will investigate.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

0 votes

Report it directly to Atlassian (Bitbucket)

Open repo → Report/Flag repository → choose malware/phishing

Or submit via Atlassian support with:

Repo URL

Screenshots

LinkedIn + Google Doc links

Also report the LinkedIn recruiter as scam/phishing and block them.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Suggest an answer

Was this helpful?

Thanks!

Bitbucket

DEPLOYMENT TYPE

CLOUD

Forums

Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

How do I report a malicious repository?

2 answers

Suggest an answer

Was this helpful?

Thanks!

DEPLOYMENT TYPE

TAGS

Atlassian Community Events