Hello, This is Pranav from Postman.
Bitbucket has a secret scanning feature that allows users to scan their repositories to check if there are any leaked secrets. Does this feature have 3rd party integration where Bitbucket can forward this information about a leaked token to its provider/vendor ? Similar to https://docs.github.com/en/developers/overview/secret-scanning-partner-program
E.g if an AWS Access Token is leaked, send a callback to Amazon with this leak data.
Also do users need to manually start the scan, or does Bitbucket automatically scan the repo on every commit ?
If you do support external vendor integration, Postman would love to get onboarded as a vendor for its Postman API Keys
