Developer Connect enhances security for GitLab/Bitbucket connections
Developer Connect now enforces granular permissions for GitLab Enterprise and Bitbucket Data Center connections by checking both the calling principal and the service agent against Secret Manager secrets. This change adheres to the principle of least privilege, enhancing security by ensuring only authorized entities can access sensitive Git provider credentials. The update affects users managing these specific types of repository connections and is detailed in the Developer Connect security bulletin.
Security (1) ›
- Developer Connect
For GitLab Enterprise and Bitbucket Data Center connections, Developer Connect now checks permissions on the calling principal. When you create or update repository connections, Developer Connect uses Secret Manager secrets to authenticate to third-party Git providers. Previously, these referenced secrets were retrieved by the Developer Connect service agent (P4SA) on your behalf, checking permissions only against the P4SA's credentials rather than those of the calling principal. To adhere to the security principle of least privilege, Developer Connect now checks permissions on both the callin
https://docs.cloud.google.com/release-notes#July_13_2026