Security

Subscribe

Follow Us

Featured Post
May 11, 2022

How we run Red Team operations remotely

Our team shares the process and templates that drive our successful red team ops in our all-remote environment. Read on

Recent Posts

Post Image

Updates regarding Rubygems ‘Unauthorized gem takeover for some gems’ vulnerability CVE-2022-29176

May 9, 2022

Actions we've taken to investigate the Rubygems takeover vulnerability.

Post Image

One DevOps platform can help you achieve DevSecOps

May 9, 2022

GitLab drives innovation in the AST market to secure cloud-native applications.

Post Image

Updates regarding Spring remote code execution vulnerabilities CVE-2022-22965 and CVE-2022-22963

Apr 7, 2022

Actions we've taken to investigate the Spring RCE vulnerabilities.

Post Image

How to ensure separation of duties and enforce compliance with GitLab

Apr 4, 2022

Use your DevOps platform to help maintain compliance without compromising on development speed.

Post Image

Comply with NIST's secure software supply chain framework with GitLab

Mar 29, 2022

The U.S. government's Secure Software Development Framework has four key practices. GitLab's DevOps platform has features to address them all.

Post Image

How GitLab's integration with Rezilion reduces vulnerability backlog and identifies exploitable risks

Baksheesh Singh Ghuman
Mar 23, 2022

The native integration helps developers detect and remediate vulnerabilities that are exploitable early on in the development process.

Post Image

Action we've taken in response to a potential Okta breach

Mar 22, 2022

Actions we've taken to investigate a potential Okta breach.

Post Image

Security hygiene best practices for GitLab users

Mar 21, 2022

Security hygiene measures that GitLab.com and Self-managed users should consider implementing.

Post Image

How GitLab handles security bugs (and why it matters)

Feb 17, 2022

Learn what makes our approach to handling and transparently disclosing security bugs unique.

Post Image

GitLab’s newest continuous compliance features bolster software supply chain security

Feb 9, 2022

Business leaders and DevOps teams can continuously mitigate the risk of cloud-native environments and use guard rails to automate software compliance.

Post Image

Using the GitLab GraphQL API for vulnerability reporting

Feb 2, 2022

Follow along as we teach you how to use GitLab GraphQL API to manage vulnerabilities programatically.

Post Image

Detecting and alerting on anomalies in your container host with GitLab + Falco

Jan 20, 2022

Learn how to install and use Falco to detect anomalies in your containers

Post Image

How elite DevOps teams secure the software supply chain

Jan 6, 2022

The time is now to integrate security into your DevOps processes - your business will be better for it.

Post Image

How to tailor SAST and Secret Detection to your application context with custom rulesets

How you can use GitLab custom rulesets to customize security scanners to your needs.

Open in Web IDE View source