GitLab Ultimate is ideal for projects with executive visibility and strategic organizational usage. Ultimate enables enterprises transform IT by optimizing and accelerating delivery while managing priorities, security, risk, and compliance.
In addition to the capabilities in lower tiers, GitLab Ultimate adds security capabilities like SAST, DAST, Dependency scanning, container scanning and a comprehensive Security Dashboard to provide a snapshot of the Security posture. It also helps organizations to manage their compliance posture through License compliance and a compliance dashboard. Organizations can improve efficiency through multi level epics to organize and prioritise initiatives as well as improve developer efficiency via productivity insights. Free guest user licenses help to improve your license usage for users with minimal interaction with the system.
Please note this is not a comprehensive set of capabilities in GitLab Ultimate, visit about.gitlab.com/features for the latest. GitLab continuously adds features every month and evaluates features that can be moved to lower tiers to benefit more users.
Ultimate enables enterprises achieve advanced DevOps maturity by introducing enterprise capabilities to:
Ultimate enables enterprises to maintain a consistent DevOps experience with a single, scalable interface for end to end DevOps. With this, developer satisfaction and productivity is massively improved with more time for value added projects rather than spending time learning different toolsets and integrating them. Additionally, DevOps Dashboards & Analytics available in Ultimate facilitate greater visibility and transparency across projects - helping to improve efficiencies and eliminate bottlenecks in the organization. Ultimate introduces Project Insights and Portfolio Management in the product to increase organizational efficiencies.
~20 tools consolidated into GitLab; Glympse remediated security issues faster than any other company in their Security Auditor's experience
Development can move much faster when engineers can stay on one page and click buttons to release auditable changes to production and have easy rollbacks; everything is much more streamlined. Within one sprint, just 2 weeks, Glympse was able to implement security jobs across all of their repositories using GitLab’s CI templates and their pre-existing Docker-based deployment scripts.
Zaq Wiedmann
Lead Software Engineer, Glympse
Read more
Ultimate enables seamless collaboration across Dev and Ops with continuous innovation. This continuous feedback loop from customers, deployments and monitoring operations back into development helps enterprises create products relevant for customers, go to market faster and beat competition as well. With every change undergoing rigorous testing, security & compliance testing, and incremental deployment - Ultimate allows rapid, iterative deployment of better quality software. Ultimate enhances configuration and monitoring to deliver products faster.
Jenkins build took 3 hours, now with GitLab it takes 30 mins: a 6x improvement
GitLab has allowed Alteryx to have code reviews, source control, continuous integration, and continuous deployment all tied together and speaking the same language. The team took a build that was running legacy systems and moved it to GitLab. This build took 3 hours on the Jenkins machine and it took 30 minutes to run on GitLab after it was going. Engineers can actually look at the build and understand what’s going on; they’re able to debug it and make it successful
Read more
Ultimate introduces capabilities to help reduce and manage risk from security and regulatory compliance by identifying vulnerabilities and compliance issues before the code ever leaves the developer's hands. Ultimate introduces Application Security Testing, Security Dashboards, and more advanced common controls and audit to reduce risks.
BI Worldwide performed 300 SAST/Dependency scans in the first 4 days of use helping the team identify previously unidentified vulnerabilities
One tool for SCM+CI/CD was a big initial win. Now wrapping security scans into that tool as well has already increased our visibility into security vulnerabilities. The integrated Docker registry has also been very helpful for us. Issue/Product management features let everyone operate in the same space regardless of role.
Adam Dehnel
Product architect, BI Worldwide
Read more
Ultimate also includes priority support (4 business hour support), live upgrade assistance, and a Technical Account Manager who will work with you to achieve your strategic objectives and gain maximum value from your investment in GitLab. The Technical Account Manager is available to Ultimate customers spending $50,000 per year or more on their license.
Read all case studies here
The below list of features are after factoring in the announcement regarding 18 GitLab features moving to core. The timelines of the actual move of features to core in the product will be as per the linked issues in the announcement.
| Cybersecurity is a critical concern of every business leader. Your applications MUST be secure. GitLab Ultimate weaves security into the pipeline to provide early and actionable feedback to the development team. |  |
| Features | Value |
|---|---|
| Static Application Security Testing | Evaluates the static code, checking for potential security issues. |
| Dynamic Application Security Testing | Analyzes the review application to identify potential security issues - both automated as part of the pipeline as well as on demand |
| Dependency Scanning | Evaluates the third-party dependencies to identify potential security issues. |
| Container Scanning | Analyzes Docker images and checks for potential security issues, offers a suggested solution for the vulnerability, when available. |
| Security Center | A personalized space to visualize the latest security status for each project and across projects. It includes a Security Dashboard, vulnerability report and settings. |
| API Fuzz testing | API Fuzz Testing is a great way to find bugs and vulnerabilities in your web apps and APIs that other scanners and testing techniques miss |
| Coverage Guided Fuzz testing | Coverage-guided fuzzing sends random inputs to an instrumented version of your application in an effort to cause unexpected behavior, such as a crash |
| Vulnerability Management | Vulnerability management helps identify and manage vulnerabilities in assets and application code |
| On demand DAST | Scan an already-deployed application or API outside of a CI/CD pipeline job |
| Browser based crawler | As websites and applications continue to be more and more JavaScript-heavy, this crawler helps to crawl JavaScript-heavy and single-page applications. |
| The compliance tools provided by GitLab let you keep an eye on various aspects of your project. |  |
| Features | Value |
|---|---|
| License Compliance | Identify the presence of new software licenses included in your project and track project dependencies. Approve or deny the inclusion of a specific license. |
| Compliance Dashboard | Compliance dashboard gives you the ability to see your group’s Merge Request activity by providing a high-level view for all projects in the group and approvers for the merge request |
| Credential Inventory(Self Managed Only) | Credential Inventory allows you to keep track of all the credentials, revoke and delete credentials based on access scope and expiry |
| Compliance pipeline configurations | Enforce separation of duties by setting up a single pipeline definition for a specific compliance framework. All projects using that framework will include the predefined pipeline automatically, ensuring that compliance steps are run the same way every time. |
| Establish end to end visibility from Business Idea to delivering value. GitLab Ultimate, enables portfolio planning, tracking, and execution in one tool, that unifies the team to focus on delivering business value. |  |
| Features | Value |
|---|---|
| Multi Level Epics | Organize, plan, and prioritize business ideas and initiatives into multi level epics. |
| Requirements Management | Simple and intuitive way to create and trace your requirements throughout the entire Software DevOps lifecycle. |
| Project Insights | Visualize project insights to improve developer efficiencies. |
| Test Cases | Create, modify and view testing scenarios within GitLab itself |
| Features | Value |
|---|---|
| Security Dashboards | See an overview of current vulnerability status Projects, Groups, or your personal Security Center with Security Dashboards. |
| Security Alerts Dashboards | Container Network Policies can be configured to send alerts to the security alert dashboard |
| Release Analytics | An aggregated view of all release metrics for each of the projects associated to a group. |
| Compliance Dashboard | Compliance dashboard gives you the ability to see your group’s Merge Request activity by providing a high-level view for all projects in the group and approvers for the merge request |
| DORA4 Metrics | Measuring the efficiency of your SDLC with DORA metrics - currently supporting Deployment Frequency and Lead Time for merge requests |
| DevOps Adoption Report | Insight into how GitLab has been adopted across your organization |
| Features | Value |
|---|---|
| Free Guest Users | Guest users don’t count towards the license count. |
| Status Page | Create and deploy a static website to communicate efficiently to users during an incident. |
| Auto Rollback | Automatic rollback to the last successful deployment. |
