We’re transparent by default, and just completed our first SOC 2 Type 1 audit! How does our public-first stance affect our compliance efforts and impact an audit? Read on
Open source software presents unique security challenges. Here’s what you need to know.
Using components with known vulnerabilities is the most common security problem in GitLab.com-hosted projects.
Your guide to abusing 'language barriers' between web components.
From why we chose Okta to issues around data fluidity, here are answers to your most-asked ZT questions.
A Red Team exercise on exploiting design decisions on GCP.
GitLab is thrilled to announce our membership in the OWASP Foundation.
Our bug bounty program has grown, expanded and matured in the past 5 years. A lot can happen in a million dollars’ time.
Our red team has created a new tool to find sensitive data in the vast, wide-open.
Cheers, our bug bounty program is celebrating one year!
How to exploit a path traversal issue to gain an admin account
Use GitLab to control your toolchain sprawl, improve team communication and productivity, and secure your DevOps lifecycle.
We're now offering higher bounties for critical and high severity reports.
We take a look back at how far we've come in our ZTN implementation, and at the progress we still need to make.
Implementing change in an already working environment always brings its fair share of growing pains. What happens when that change is Zero Trust?
You talked. We listened. Quicker bug bounty payouts and we're holding a contest for our hackers!