Security and permissions
Bitbucket permissions
We require some permissions from your organization's Bitbucket repositories in order to generate development metrics and send code review comments as well as relevant alerts to the corresponding PR channel (such as new commits, review approvals, workflow run results, etc.). Understand why and how we use these OAuth scopes below:
Application scopes
Organization account scopes
| Scope | Permission | Reason |
|---|---|---|
| Accout | Read | Obtain organization members so that they can be linked to Slack users. |
| Read | Pullpo user creation. | |
| Project | Read | Obtain projects that Pullpo should track. |
| Pull Request | Read & Write | Fetch pull request data to compute engineering metrics, open PR-channels and send relevant alerts, reminders and synchronized messages. |
Events
| Subscriptions | Reason |
|---|---|
| pullrequest:created | Start tracking velocity metrics. Open PR-channel. Schedule reminders. |
| pullrequest:updated | Update the state of a pull request and related metrics. Send relevant alerts. |
| pullrequest:approved | Record time-to-approve. Send PR Approved alert through the corresponding PR channel. |
| pullrequest:unapproved | Update the state of a reviewer's activity in the corresponding pull request. |
| pullrequest:fulfilled | Update the state of a pull request and related metrics. Close corresponding PR channel. |
| pullrequest:superseded | Update the state of a pull request and related metrics. Close corresponding PR channel. |
| pullrequest:rejected | Update the state of a pull request and related metrics. Close corresponding PR channel. |
| pullrequest:comment_created | Track activity metrics. Send synchronized comment through corresponding PR channel. |
| pullrequest:comment_deleted | Remove synchronized comment from corresponding PR channel. |
| pullrequest:changes_request_created | Start tracking reviewer metrics. Invite reviewer to corresponding PR channel. |
| pullrequest:changes_request_removed | Update reviewer metrics. |
| repo:push | Detect hotfix direct push events to compute stability metrics. |
| deployment:completed | Send workflow results through the corresponding PR channel. |
| deployment:pending | Track pending workflows to build the corresponding PR channel worklow results alert. |
| deployment:started | Track running workflows to build the corresponding PR channel worklow results alert. |