BlogSecurity16

Browse articles from Security

Recent posts

Security

Updates and actions to address Log4j CVE 2021 44228 and CVE 2021 45046 in GitLab

Actions we’ve taken to investigate and mitigate the impact of Log4j, and actions our users can take.

Security

How GitLab successfully expanded our SOC 2 Type II Trust Services Report Criteria

Here's how we expanded our SOC 2 Type 2 and SOC 3 reports.

Security

2021: Smashing bugs and dropping names

We take a look at some of the big things that happened in our Bug Bounty program this last year and celebrate the contributions of the bug bounty hunters who make it all possible.

Security

GitLab Technical Certifications program wins 5 awards at LearnX Conference

GitLab's Tech Certification programs won 5 different awards at this year's LearnX conference.

Security

Three things you might not know about GitLab security

There's so much more to GitLab's security offering than meets the eye. Here are three features you may have missed.

Security

Deep dive: the tech stack behind Spamcheck

We take a closer look at the tooling, technical choices, metrics and lessons learned behind our new anti-abuse tool.

Security

Top five actions engineers should take based on the OWASP Top 10 2021 security updates

Learn what actions engineers should take based on the OWASP Top 10 updates for 2021

Security

Action needed by self-managed customers in response to CVE-2021-22205

Self-managed users using outdated versions should update immediately.

Security

Our 3rd annual bug bounty contest: the swagtastic sequel to the sequel

We’re running a bug bounty contest November 1 thru December 3. Find a bug and be entered to win some sweet custom swag. What’s better than a contest? Increased bounty ranges!

Ready to get started?

See what your team could do with a unified DevSecOps Platform

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert