Limit credential exposure with fine-grained personal access tokens
Explore tokens that carry only the permissions they need, and nothing more. Then join the beta program.
Read PostBrowse articles that include the security tag
Featured post
Recent posts
Security Labs
How to detect and prevent Contagious Interview IDE attacks
Learn how we built custom controls that detect and prevent malware campaigns like those used for Contagious Interview and how to deploy them in your environment.
Security Labs
Build an automated detection testing framework with GitLab CI/CD and Duo
Learn how GitLab's Signals Engineering team built the WATCH framework to continuously validate our security monitoring pipeline.
Security
Prepare your pipeline for AI-discovered zero-days
AI is finding vulnerabilities faster than teams can patch. Learn how pipeline enforcement, automated triage, and AI remediation close the gap.
Product
GitLab 18.11: Automate remediation with ready-to-merge AI code fixes
With GitLab 18.11, Agentic SAST Vulnerability Resolution becomes generally available, alleviating security bottlenecks.
Security Labs
Pipeline security lessons from March supply chain incidents
Learn how centralized pipeline policies can detect and block the patterns behind a series of recent attacks.
Security
Manage vulnerability noise at scale with auto-dismiss policies
Learn how to cut through scanner noise and focus on the vulnerabilities that matter most with GitLab security, including use cases and templates.
Security
GitLab 18.10 brings AI-native triage and remediation
Learn about GitLab Duo Agent Platform capabilities that cut noise, surface real vulnerabilities, and turn findings into proposed fixes.
Find out which plan works best for your team
Learn about pricingLearn about what GitLab can do for your team
Talk to an expert