Browse articles from Security
GitLab native secrets manager to give software supply chain security a boost GitLab is building a secrets manager that is key to providing an end-to-end, cloud-agnostic approach to the management of sensitive information. Read Post
Security 
Detect application vulnerabilities with GitLab’s browser-based DAST
Learn why you should include dynamic application security testing as part of a defense-in-depth strategy for software development, and how to migrate from proxy-based DAST.
Security 
GitLab Patch Release: 16.11.2, 16.10.5, 16.9.7
Learn more about GitLab Patch Release: 16.11.2, 16.10.5, 16.9.7 for GitLab Community Edition (CE) and Enterprise Edition (EE).
Security 
Migration guide: GitHub Advanced Security to GitLab Ultimate
Understand the similarities and differences between GitLab Ultimate and GitHub Advanced Security. Then follow this in-depth tutorial to make the move to the GitLab DevSecOps platform.
Security 
Happy birthday, Secure by Design!
The U.S. government's initiative to ensure greater security in software products turns one. Find out what GitLab has done to align with this critical effort.
Security
GitLab introduces new CIS Benchmark for improved security
Learn why CIS Benchmarks matter, how the CIS GitLab Benchmark was created, and how to use it to properly secure your GitLab installation.
Security 
Integrate external security scanners into your DevSecOps workflow
Learn how to bring Snyk scan results into the merge request widget by parsing JSON artifacts and leveraging the SARIF file format.
Security 
Important information regarding xz-utils (CVE-2024-3094)
Affected software not used for GitLab.com, GitLab Dedicated, or default self-hosted software packages.
New to GitLab and not sure where to start?
Get started guideLearn about what GitLab can do for your team
Talk to an expert