I'm a founder of ReviewNB and we're trying to build BitBucket integration. Our Oauth app would require "pull_request:write" scope on a *few* repositories (which I understand comes with repository read & write scope as well). Asking access to ALL repositories (when we don't need it) would be a poor security practice.
I'm wondering whether it's possible for customers to restrict our OAuth app to only a handful of selected repositories?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.