The following page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features or functionality remain at the sole discretion of GitLab Inc.
Stage | Secure |
Maturity | Planned |
Content Last Reviewed | 2025-01-02 |
Thank you for visiting this category direction page on Security Asset Inventories at GitLab. This page belongs to the Security Platform Management group of the Security Risk Management stage and is maintained by Sara Meadzinger.
This direction page is a work in progress and everyone can contribute:
Security asset inventories enable organizations to get visibility into which projects, applications and APIs are covered by security testing. It's commonly said that you can't protect what you can't see. Asset inventories enable organizations to understand their attack surface so they can accurately assess their security posture and efficiently identify gaps. Within the software supply chain, asset inventories enable security teams to more efficiently address risks that impact specific classes of assets. Unfortunately, many security teams rely on tracking their assets manually via spreadsheets, which results in out-of-date, incomplete information and leads to coverage gaps where security testing tools are not applied to undocumented assets.
See our prioritized roadmap here.
BIC (Best In Class) is an indicator of forecasted near-term market performance based on a combination of factors, including analyst views, market news, and feedback from the sales and product teams. It is critical that we understand where GitLab appears in the BIC landscape.
For this product area, these are the capabilities a best-in-class solution should provide:
GitLab security asset inventory features are all packaged as part of the GitLab Ultimate tier. This aligns with our pricing strategy as these features are relevant for executives who are concerned about keeping their organizations' applications secure.
Security asset inventories are evaluated by analysts in the Application Security and ASPM markets.