The Scanner

• 

  Configuration Screen

• 

  Pie Chart

• 

  Line Chart

• 

  Pull Request Overview

• 

  Ignored vulnerabilities

• 

  Repository Main Menu

Inspiration

As a team, we felt the lack of such an application. That's why we decided to build it ourselves for Codegeist 2025.

What it does

The Scanner scans the repository and lists the vulnerabilities it finds. Depending on the configuration, it can establish a connection with Jira, Confluence, and Compass.

How we built it

We retrieved repository information from Atlassian Bitbucket APIs and communicated these API results with our own external backend for analysis. We created an Atlassian OAuth application as a middleware and established the connection between Bitbucket, Jira, Compass, and Confluence this way.

Challenges we ran into

Scanning repository files recursively to find all dependency files and enabling Bitbucket to communicate with other Atlassian applications was challenging for us.

Accomplishments that we're proud of

We wanted to support multiple Atlassian platforms, and it was a proud moment for us to build an app that can communicate with all of them.

What we learned

We had never built a Bitbucket app or implemented multi-platform communication before. We had also never used Confluence and Compass APIs. We learned all of these.

What's next for The Scanner

"We want to look at the entire project to find security vulnerabilities within the code, not just in dependency files, and we want to improve the performance.

Built With

• bitbucket
• compass
• confluence
• express.js
• forge
• node-json-db
• react