Blog Julian Thome
Julian Thome
Julian Thome
@jthome
Security bug bounty cover

Introducing GitLab Advanced Vulnerability Tracking

Learn how this security feature improves the efficiency of vulnerability management by reducing futile auditing time (includes data from a new study).

Open Source benchmarking.png

A Google Summer of Code project: creating a benchmarking framework for SAST

Our 2022 Google Summer of Code project helped to create a benchmarking framework for SAST.

Open Source typeset.png

Lingo: A Go micro language framework for building Domain Specific Languages

Design, build and integrate your own Domain Specific Language with Lingo.

Security handshake.png

Introducing a community-driven advisory database for third-party software dependencies

The advisory data can be readily adopted, adapted, and exchanged. Learn more here.

Security customize.png

How to tailor SAST and Secret Detection to your application context with custom rulesets

How you can use GitLab custom rulesets to customize security scanners to your needs.

Security Blog fallback hero

SemVer versioning: how we handled it with linear interval arithmetic

SemVer versioning made it difficult to automate processing. We turned to linear interval arithmetic to come up with a unified, language-agnostic semantic versioning approach.

Security anomaly-detection-cover.png

How to write and continuously test vulnerability detection rules for SAST

Interns with the Google Summer of Code helped GitLab transition from our old SAST tools to Semgrep.

Ready to get started?

See what your team could do with a unified DevSecOps Platform.

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert