If you reach your limits, you simply won’t be able to use our shared runners to execute pipelines until the end of your current billing cycle, or until you upgrade your account to Silver or Gold. Your own runners can still be used even if you reach your limits.
There is no catch. Part of our strategy sequence is to make GitLab.com the most popular SaaS solution for private and public repositories. To achieve this goal you get unlimited public and private projects, and there is no limit to the number of collaborators on a project.
GitLab.com is monitored 24/7. Our servers are hosted on Amazon Web Services (AWS), Digital Ocean, and Azure, we use configuration management, and we patch our servers at least once a week. Our runbooks are public as is our operational issue tracker. GitLab offers Two-Factor Authentication (2FA) via a mobile application or a U2F device, rate limiting, audit logs, and passwords are one-way encrypted. Answers to other common security questions are available on our security page.