Bleeping Computer

GitLab warns of critical zero-click account hijacking vulnerability

GitLab has released security updates for both the Community and Enterprise Edition to address two critical vulnerabilities, one of them allowing account hijacking with no user interaction. The vendor ...
Bleeping Computer

Critical GitLab bug lets attackers run pipelines as any user

A critical vulnerability is affecting certain versions of GitLab Community and Enterprise Edition products, which could be exploited to run pipelines as any user. GitLab is a popular web-based ...

GitLab Expands Collaboration with Google to Deliver a Fully Managed DevSecOps Platform with the Latest Gemini and Gemma Models

GitLab Inc., the intelligent orchestration platform for DevSecOps, today announced a managed GitLab offering on Google Cloud, ...
Dark Reading

Critical GitLab Bug Threatens Software Development Pipelines

A critical GitLab vulnerability could allow an attacker to run a pipeline as another user. GitLab is a popular Git repository, second only to GitHub, with millions of active users. This week, it ...
heise online

More security: GitLab 18.0 is being launched in several stages

The deployment of GitLab 18.0 follows a precisely timed choreography: It starts with the Breaking Changes, which GitLab rolls out over three time windows. The first ran between April 21 and 23. This ...
InfoQ

GitLab Improves Merge Requests, GitOps Functionality and More

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
heise online

Security patch: Gitlab fixes vulnerabilities in server versions

Three current versions fix the vulnerabilities, namely 17.3.2, 17.2.5 and 17.1.7 for the respective version trees of GitLab CE and EE. Administrators of self-hosted server versions should make sure to ...