GitLab discovers widespread npm supply chain attack
Malware driving attack includes "dead man's switch" that can harm user data.
Read Postis now in public beta!
Browse articles from Security
Featured post
Recent posts
Security
Migrate from pipeline variables to pipeline inputs for better security
Follow this guide to learn about stronger controls around pipeline customization, including how to implement explicit declarations, type safety, and validation.
Security
Delivering faster and smarter scans with Advanced SAST
New accuracy and speed enhancements improve the developer experience and drive adoption.
Security
GitLab Patch Release: 18.4.2, 18.3.4, 18.2.8
Learn more about GitLab Patch Release: 18.4.2, 18.3.4, 18.2.8 for GitLab Community Edition (CE) and Enterprise Edition (EE).
Security
A comprehensive guide to GitLab DAST
DevSecOps teams can learn how to implement and configure dynamic application security testing, perform passive/active scans, and set security policies.
Security
A developer's guide to building secure retail apps with GitLab
Learn how a DevSecOps platform helps retailers develop secure, compliant software for complex, high-traffic retail environments.
Security
GitLab uncovers Bittensor theft campaign via PyPI
GitLab's Vulnerability Research team identified a supply chain attack campaign using typosquatted PyPI packages to steal cryptocurrency from Bittensor wallets by hijacking staking operations.
Security
Securing AI together: GitLab’s partnership with security researchers
Learn how GitLab collaborates with security researchers to identify and defend against emerging threats.
Find out which plan works best for your team
Learn about pricingLearn about what GitLab can do for your team
Talk to an expert