Security News
PyPI’s New Archival Feature Closes a Major Security Gap
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
By Sarah Gooding - Jan 30, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
bitbucket-pipeline-runner
Advanced tools
- Maintainers
- 1
Bitbucket Pipeline Runner
Tool to run Bitbucket Pipelines locally.
Installation
The prefered way of installing pipeline-runner is with pipx
pipx install bitbucket-pipeline-runner
Basic usage
To run a pipeline
cd <project-directory>
pipeline-runner run <pipeline-name>
To list available pipelines
cd <project-directory>
pipeline-runner list
Environment variables
bitbucket pipeline runner already sets all BITBUCKET_* environment variables in the step's run environment.
It will also source any .env file in the current directory, for all project specific environment variables.
Artifacts and logs
Persistent data like artifacts generated from your pipelines and execution logs can be found in your user's data directory.
On Linux:
${XDG_DATA_HOME:-~/.local/share}/pipeline-runner
On macOS:
~/Library/Application Support/pipeline-runner
Caches
Caches defined in your pipelines are stored in your user's cache directory. Unlike Bitbucket Pipelines, caches are always saved even if they already exists. This is subject to change in the future, to follow the behaviour of Bitbucket Pipelines.
On Linux:
${XDG_CACHE_HOME:-~/.cache}/pipeline-runner
On macOS:
~/Library/Caches/pipeline-runner
Note: Docker cache is stored in a docker volume instead.
Supported features
| Feature | Supported | Note |
|---|---|---|
| Variables | ✅ | |
| Artifacts | ✅ | |
| Docker Service | ✅ | |
| Caches | ✅ | |
| Custom Caches | ✅ | |
| Private Runner Images | ✅ | |
| Pipes | ✅ | |
| OIDC | ❌ | Theoretically possible but way too impractical |
Debugging
A few features are available to help with debugging.
Breakpoints
Breakpoints, or pauses, can be added during the execution of a pipeline. To do so, add a # pipeline-runner[breakpoint] entry in script like so
example_with_breakpoint:
- step:
name: Step with breakpoint
script:
- echo "do something"
- # pipeline-runner[breakpoint]
- echo "do something else"
The execution will stop at the breakpoint to allow the user to check the state of the pipeline.
CPU Limits Enforcing
By default, no cpu limits are enforced, meaning that the pipeline will run as fast as it can.
You can mimick the cpu limits enforced by Bitbucket Pipelines with the --cpu-limits. This is
useful to replicate more closely the speed at which a pipeline runs in the real thing.
FAQs
Run a bitbucket pipeline locally
We found that bitbucket-pipeline-runner demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
North Korean APT Lazarus Targets Developers with Malicious npm Package
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
By Kirill Boychenko, Peter van der Zee - Jan 29, 2025
Security News
CISA Brings KEV Data to GitHub
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.
By Sarah Gooding - Jan 29, 2025