Application and cloud security is a shared responsibility
Cloud environments and application connectivity have become a critical part of many organizations’ digital transformation initiatives. In fact, nearly 40% of North American …
Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)
A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development. The latest …
GitLab enhances Security and Governance solution to strengthen software supply chain security
GitLab has revealed enhancements to its Security and Governance solution which enables organizations to integrate security and compliance in every step of the software …
GitLab and Google Cloud launch Cloud Seed to accelerate cloud adoption
GitLab launched Cloud Seed in partnership with Google Cloud. Cloud Seed is a new capability within GitLab that simplifies the developer experience for procuring and consuming …
Development of secure software now an imperative for global DevOps teams
GitLab released the results of its annual DevSecOps survey which highlights the continued prioritization of security and compliance, investment in toolchain consolidation, and …
Critical RCE bug in GitLab patched, update ASAP! (CVE-2022-2884)
GitLab has fixed a remote code execution vulnerability (CVE-2022-2884) affecting the Community and the Enterprise Edition of its DevOps platform, and has urged admins to …
Is security becoming a priority for DevOps teams?
GitLab released the results of its annual DevSecOps survey which highlights the continued prioritization of security and compliance, investment in toolchain consolidation, and …
CircleCI launches support for GitLab SaaS developers
CircleCI released support for GitLab SaaS customers. Now, joint customers can enjoy interoperability between tools from GitLab, The One DevOps Platform for software …
Secure Code Warrior collaborates with GitLab to enhance real-time secure coding guidance
Secure Code Warrior announced it has joined GitLab Inc.’s global partner program. As part of the partnership, Secure Code Warrior will make its learning platform capabilities …
Checkmarx KICS integrates into GitLab 14.5 to manage IaC vulnerabilities
Checkmarx announced that its open source KICS (Keeping Infrastructure as Code Secure) solution has been integrated into version 14.5 of the GitLab DevOps Platform as an …
Putting the “sec” in DevSecOps: An overall reduction of risk
In this Help Net Security interview, Cindy Blake, Senior Security Evangelist at GitLab, talks about the importance of integrating security in DevSecOps and how to overcome the …
Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205
Attackers are actively exploiting an “old” vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The …