Can a devloper sabotage a workspace in BItbucket?

Hi @ljohnsonca and welcome to the community.

Are files missing from an existing repository? Or have certain repositories been deleted?

I can see a few deleted repositories under your workspace. If you want, I can try to restore a certain deleted repository. If you do, please let me know as soon as possible as I can only do it for a limited amount of time, and let me know the last two letters of the repo you would like me to restore. You can find that in your workspace's Audit Log (from Workspace settings > Audit Log); you will see the repository deletion events along with the repository names.

Please keep in mind that I cannot restore history in these repos if someone force pushed and deleted commits this way. If the developer deleted branches or did a force push that resulted in commits deletion, then recovery is only possible from a local clone.

Stefano provided some good information, I just wanted to add the following:

• Users that are either workspace admins or repo admins can delete repositories or transfer repositories to another workspace.
• Workspace admins can also delete a workspace, which will, in turn, delete the repositories.
• Users with at least write access to a repository can delete its branches or force push to a repo (which may end up in losing commits), unless there are branch restrictions. With branch restrictions, you can:
  • Specify which users can push directly to certain branches or merge via PR to certain branches.
  • You can disable the deletion of certain branches and also rewriting branch history. This is important as it will prevent users from deleting certain branches or force pushing something that will result in loss of commits.

Branch restrictions can be created or deleted only by admins, so users with write access won't be able to change or remove these restrictions.

Kind regards,
Theodora

Yes, a developer can sabotage a workspace in Bitbucket by deleting repositories, branches, or specific files. If you've found that essential files like the master file, scraper, and .gitignore are missing, here's what you can do:

• Check the Commit History: Go to the repository in question and examine the commit history. Look for recent commits that might have removed the files. This can help you identify when and possibly who made the deletions.
• Restore Deleted Files: If the files were deleted through a commit, you can revert the changes by using the "revert" option available in Bitbucket to undo the specific commit that caused the deletions. If you have a local copy, you can also push the files back to the repository Check here .
• Audit Logs for Proof of Sabotage: Utilize Bitbucket’s audit logs to track user activities. This can provide a detailed record of actions taken within your repositories, helping you identify any unauthorized deletions or changes.
• User Permissions Review: Ensure that only trusted team members have write access to your repositories. You can review and adjust user permissions to prevent unauthorized access. Removing or limiting the access of users who do not need it can help mitigate the risk of future incidents.

To further secure your Bitbucket workspace and prevent future incidents, consider strengthening your security measures and implementing branch restrictions. Enable 2FA for all users to add an extra layer of security to your account. Regular backups of your repositories are also crucial to ensure quick recovery from any data loss.

Additionally, configure branch restrictions to protect critical branches like master from unauthorized changes. Setting up rules that require pull requests to be reviewed and approved before merging can help maintain the integrity of your codebase. These steps will bolster your defenses against potential sabotage and enhance the overall security of your Bitbucket environment.