Category: Security

Each day you build software there is another opportunity for security vulnerabilities to creep into production. So it is becoming…

GitLab is aware of CVE-2024-3094, where malicious code was back-doored into the xz-utils lossless compression software suite, affecting xz-utils Versions…

Security releases are an important part of modern software delivery. Historically, GitLab committed to one security release a month, with…

We hear you: Managing cloud accounts is risky, tedious, and time-consuming, but also a must-have in many situations. You might…

The Maven dependency proxy was released in GitLab 16.8. This new feature allows organizations to proxy and cache packages from…

Insecure secret management practices (SMPs) pose a significant risk to any company, especially those tasked with the storage and protection…

Today, we are open-sourcing our solution for detecting secrets in video content. We use it internally to search videos published…

The principle of least privilege (PoLP) is a concept in which a user’s access rights should be limited to the…

GitLab, the most comprehensive DevSecOps platform, has everything you need to plan, manage, build, deploy, secure, govern, and monitor your…

Today we are releasing versions 16.8.1, 16.7.4, 16.6.6, 16.5.8 for GitLab Community Edition (CE) and Enterprise Edition (EE). These versions…