You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
Hi, reviving the old thread here.
What @Ana Retamal is saying here is that a regular user, not having admin rights on a repository, can freely install any random 3rd-party app to the team workspace and there is nothing we can do about it.
Installation of an app to the workspace exposes the repo content to this application and if you let users add random apps, you effectively make the rest of your access control void.
How does this play with the Atlassian security obligations?
It is not possible to restrict Bitbucket Cloud users from installing apps in their accounts. That is something that every admin can do, and since Bitbucket users are the admins of their own accounts, they'll have that privilege.
Let us know if you have any other questions!
If some users are installing apps and everyone can see them, that's because they must be installing them in repositories that are part of the team, and not in their private repositories.
Could you send us a screenshot where the users can see those apps?