Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-15484

Secure pipeline configuration files

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      Hello,
      we're planning to use pipelines to deploy to Salesforce.
      My concern is that pipeline configuration files stored in each branch, containing the target Salesforce environment, could potentially be updated through a Pull Request: even if I am the only one allowed to merge on our UAT and Production environments, if a developer makes a mistake and pushes a change to a pipeline configuration file via Pull Request and I fail to identify it among the list of changes, we could end up in a situation in which I run the deployment pipeline for UAT but, instead, the content gets deployed to Salesforce Production.
      We'd therefore need to have something that makes files read-only in a branch, or have some feature that, for instance, prevents from merging a Pull Request if it lists a change on a particular file.

      Attachments

        Activity

          People

            Unassigned Unassigned
            82b06f759b7e Enrico Marnetto
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: