Follow Us

Featured Post
Apr 7, 2022

Updates regarding Spring remote code execution vulnerabilities CVE-2022-22965 and CVE-2022-22963

Actions we've taken to investigate the Spring RCE vulnerabilities. Read on

Recent Posts

Post Image

How to ensure separation of duties and enforce compliance with GitLab

Apr 4, 2022

Use your DevOps platform to help maintain compliance without compromising on development speed.

Post Image

Comply with NIST's secure software supply chain framework with GitLab

Mar 29, 2022

The U.S. government's Secure Software Development Framework has four key practices. GitLab's DevOps platform has features to address them all.

Post Image

How GitLab's integration with Rezilion reduces vulnerability backlog and identifies exploitable risks

Baksheesh Singh Ghuman
Mar 23, 2022

The native integration helps developers detect and remediate vulnerabilities that are exploitable early on in the development process.

Post Image

Action we've taken in response to a potential Okta breach

Mar 22, 2022

Actions we've taken to investigate a potential Okta breach.

Post Image

Security hygiene best practices for GitLab users

Mar 21, 2022

Security hygiene measures that and Self-managed users should consider implementing.

Post Image

How GitLab handles security bugs (and why it matters)

Feb 17, 2022

Learn what makes our approach to handling and transparently disclosing security bugs unique.

Post Image

GitLab’s newest continuous compliance features bolster software supply chain security

Feb 9, 2022

Business leaders and DevOps teams can continuously mitigate the risk of cloud-native environments and use guard rails to automate software compliance.

Post Image

Using the GitLab GraphQL API for vulnerability reporting

Feb 2, 2022

Follow along as we teach you how to use GitLab GraphQL API to manage vulnerabilities programatically.

Post Image

Detecting and alerting on anomalies in your container host with GitLab + Falco

Jan 20, 2022

Learn how to install and use Falco to detect anomalies in your containers

Post Image

How elite DevOps teams secure the software supply chain

Jan 6, 2022

The time is now to integrate security into your DevOps processes - your business will be better for it.

Post Image

How to tailor SAST and Secret Detection to your application context with custom rulesets

How you can use GitLab custom rulesets to customize security scanners to your needs.

Post Image

GitLab Security in 2021: protect, enhance, certify and strengthen

Dec 17, 2021

Join our Security team as we review how we worked to keep GitLab, and our community, secure this past year.

Post Image

Updates and actions to address Log4j CVE 2021 44228 and CVE 2021 45046 in GitLab

Dec 15, 2021

Actions we’ve taken to investigate and mitigate the impact of Log4j, and actions our users can take.

Open in Web IDE View source