From 79d978a3c3a478900529b3538458a3f43af70a9f Mon Sep 17 00:00:00 2001
From: Ofer Affias <ofer.affias@gmail.com>
Date: Thu, 21 Aug 2025 12:53:00 +0300
Subject: [PATCH] Update Bitbucket installation docs with IP allowlisting
 details

---
 docs/bitbucket-installation.md         |  3 ++-
 docs/downloads/bitbucket-pipelines.yml | 10 +++++++++-
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/docs/bitbucket-installation.md b/docs/bitbucket-installation.md
index d18d10425..e14fdd93a 100644
--- a/docs/bitbucket-installation.md
+++ b/docs/bitbucket-installation.md
@@ -19,7 +19,7 @@ description: Install gitStream to your Bitbucket workspace.
         - 13.56.203.235
         - 54.151.81.98
 
-??? Info "Understanding IP Allowlisting for gitStream"
+??? Info "Advanced: IP Allowlisting for gitStream"
     When setting up IP allowlists in Bitbucket, you're specifying which source IP addresses are permitted to interact with your repositories and APIs. This affects both gitStream and your CI/CD runners.
 
     There are two primary cases where this matters for gitStream:
@@ -36,6 +36,7 @@ description: Install gitStream to your Bitbucket workspace.
 
     - Add LinearB/gitStream service IPs to your Bitbucket allowlist (listed above).
     - Use self-hosted runners or runners with static IPs so you can manage and allowlist their addresses explicitly.
+    - Add must add to your `bitbucket-pipeline.yml` `step.runtime.cloud.atlassian-ip-ranges: true`.
 
     This combination ensures that both gitStream's internal operations and your CI runners' interactions with Bitbucket function without network restrictions.
 
diff --git a/docs/downloads/bitbucket-pipelines.yml b/docs/downloads/bitbucket-pipelines.yml
index 7feb6325e..bcf330efd 100644
--- a/docs/downloads/bitbucket-pipelines.yml
+++ b/docs/downloads/bitbucket-pipelines.yml
@@ -26,10 +26,18 @@ pipelines:
             description: workspace/repo
       - step:
           name: /:\ gitstream workflow automation
-          # For self-hosted runners, uncomment the runs-on section below
+          ##### For cloud runners with IP whitelist, uncomment the section below
+          # size: 4x # Required as atlassian-ip-ranges supported only on 4x or more
+          # runtime:
+          #   cloud:
+          #     atlassian-ip-ranges: true
+          ##### End of section
+          #
+          ##### For self-hosted runners, uncomment the section below
           # runs-on:
           #   - self.hosted # Required to indicate a self-hosted runner
           #   - cmgitstreamrunner # Custom label that must be added to your self-hosted runner
+          ##### End of section
           max-time: 15
           clone:
             enabled: false