Browse articles that include the security tag
Recent posts
Engineering
Why GitLab access tokens now have lifetime limits
Pre-existing and new personal, group, or project access tokens now have enforced lifetime limits. Find out why and learn how to minimize disruption.
Customer Stories
How global real estate company Lendlease is driving change with GitLab
Learn how Lendlease is using GitLab to improve visibility, foster collaboration, and empower everyone to be responsible for security.
Security
GitLab’s response to a high severity vulnerability impacting curl and libcurl
Learn about CVE-2023-38545, which leverages a heap buffer overflow through the SOCKS5 protocol, and what it means for GitLab customers.
Security
Introducing GitLab browser-based active checks in DAST
As of GitLab 16.4, or DAST 4.0.9, browser-based DAST active scans will search for path traversal vulnerabilities using the GitLab check 22.1 instead of the ZAP alert 6.
Security
Ask a hacker - 0xn3va
Vladislav Nechakhin or @0xn3va, one of our top 10 hacker contributors, joined us for an AMA and details his approach and strategy for bug bounty hunting.
Security
Unmasking password attacks at GitLab
Our security team has identified an increased volume of password attacks against GitLab.com on the OAuth API endpoint since September 22, 2023. Learn more.
DevSecOps
Atlassian Server ending: Goodbye disjointed toolchain, hello DevSecOps platform
Atlassian is about to end support for Server products. Learn why now is the time to make the upgrade to GitLab’s single DevSecOps platform.
Find out which plan works best for your team
Learn about pricingLearn about what GitLab can do for your team
Talk to an expert