BlogSecurity30

Browse articles that include the security tag

Recent posts

Security

How we manage open source security software

Open source software presents unique security challenges. Here’s what you need to know.

Security

Our step-by-step guide to evaluating runtime security tools

Key learnings from the GitLab Security team’s runtime security tool evaluation on Kubernetes clusters and Linux servers using real-world attack simulations.

News

Oxeye joins GitLab to advance application security capabilities

The initial focus will be on accelerating GitLab's Static Application Security (SAST) roadmap.

Security

GitLab will extend package signing key expiration by one year

Our GPG key will now expire on July 1, 2021. Here's what you need to know.

News

Secret Detection update: Leaked Personal Access Tokens will soon be revoked

Learn about upcoming changes to better protect GitLab users and organizations.

Security

Tutorial on privilege escalation and post exploitation tactics in Google Cloud Platform environments

A Red Team exercise on exploiting design decisions on GCP.

News

How to prevent crypto mining abuse on GitLab.com SaaS

GitLab now requires new users to provide a valid credit or debit card in order to use free pipeline minutes on GitLab.com SaaS.

Security

Prevent secret leaks in source code with GitLab Secret Push Protection

Learn how Secret Push Protection, now generally available, adds to a defense-in-depth detection strategy and decreases the resources needed to remediate secret leaks.

News

Pull-based GitOps moving to GitLab Free tier

Learn how this change provides organizations increased flexibility, security, scalability, and automation in cloud-native environments.

Ready to get started?

See what your team could do with a unified DevSecOps Platform

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert