GitLab Bug Bounty Program policy updates
Learn about the program's enhanced clarity and updated scope.
Read Post
is now GA. Bring agentic AI to every stage of software development.
Browse articles from Security
Featured post
Recent posts
Security
Strengthening GitLab.com security: Mandatory multi-factor authentication
Learn how GitLab is implementing mandatory MFA as part of Secure by Design commitment and what it means for users.
Security
OWASP Top 10 2025: What's changed and why it matters
Explore new supply chain and error handling risks, ranking shifts, and remediation strategies for all 10 categories.
Security
AI-powered vulnerability triaging with GitLab Duo Security Agent
Learn how this GitLab Duo Agent Platform capability uses AI to prioritize vulnerabilities, reduce alert fatigue, and help teams focus on critical security risks.
Security
GitLab discovers widespread npm supply chain attack
Malware driving attack includes "dead man's switch" that can harm user data.
Security
Migrate from pipeline variables to pipeline inputs for better security
Follow this guide to learn about stronger controls around pipeline customization, including how to implement explicit declarations, type safety, and validation.
Security
Delivering faster and smarter scans with Advanced SAST
New accuracy and speed enhancements improve the developer experience and drive adoption.
Security
GitLab Patch Release: 18.4.2, 18.3.4, 18.2.8
Learn more about GitLab Patch Release: 18.4.2, 18.3.4, 18.2.8 for GitLab Community Edition (CE) and Enterprise Edition (EE).
Find out which plan works best for your team
Learn about pricingLearn about what GitLab can do for your team
Talk to an expert