bitbucket seems to be storing the external db password in cleartext in the bitbucket.properties file. Is there a way to encrypt/obfuscate the password to avoid it being compromised?
Currently the database password cannot be encrypted and must be stored in plaintext format. We have a feature request open for this, which we're tracking as BSERV-10043: Encrypt Database Password in bitbucket.properties or use integrated authentication.
To protect the password, your best strategy is to make sure file permissions restrict users that shouldn't be allowed to access the file.
Premier Support Engineer