Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Business Wire

GitLab Extends Agentic AI with New Automated Security Remediation, Pipeline Setup, and ...

Agentic SAST Vulnerability Resolution is now generally available, automatically generating ready-to-merge code fixes and helping resolve vulnerabilities before they reach production. Two new agents in ...
SD Times

GitLab Extends Agentic AI with New Automated Security Remediation, Pipeline Setup, and ...

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

GitLab 19.0 Extends Intelligent Orchestration to Close the Gap Between Writing Code and ...

GitLab Secrets Manager, now in public beta, scopes credentials to individual jobs and governs access through the same ...
Bleeping Computer

GitLab patches high severity account takeover, missing auth issues

GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones enabling attackers to take over accounts and inject malicious jobs in ...