At GitLab, we believe that transparency is critical to our success- and security is no different. Our Customer Assurance Package (CAP) is designed to provide GitLab team members, users, customers, and other community members with the most current information about our Security and Compliance Posture.
We encourage our Customers and Prospects to begin by reviewing our Security Assurance self-service resources below.
BitSight utilizes public information collected across multiple domains to provide a numeric score from 250-900. For information on how GitLab maintains this score, refer to our Third Party Security Rating Platforms handbook page. GitLab provides a monthly company preview report snapshot which can be found below.
If you have any further questions that aren't answered here, please follow the below steps:
Prospective Customers: Please fill out a request and a representative will reach out to you.
GitLab Team Members: Contact the Risk and Field Security team using the Customer Assurance workflow in the slack #sec-fieldsecurity channel.
Coming soon: Regulated Markets Customer Assurance Package