GitLab
Legitify adds support for GitLab and GitHub Enterprise Server
We encounter security incidents on a weekly basis with prospective customers that involve pipeline manipulation, code theft, and sensitive data exposure - many of which result from bad source code management (SCM) ...
GitLab Releases Bevy of Security and Compliance Enhancements
If any good came out of the Log4j vulnerability and SolarWinds attacks, it was the fact that they dramatically increased awareness of software supply chain security. Software supply chain security is only ...
Application Security Responsibility Shifting Further Left
A GitLab survey of more 5,500 DevOps professionals (including roughly 700 application security professionals) found 57% of those security respondents reported that responsibility for security has either already or soon will shift ...
Three new API exploits causes GitLab data privacy and availability issues
On May 10, 2022, and May 11, 2022, CVE-2022-1352 CVE-2021-1431, and CVE-2022-1545 were fixed and published on Gitlab-ORG public repository. There are no technical details or exploits yet, but according to the ...
Debug your GitLab Workloads Natively with Sidekick!
The past couple of months have been a roller-coaster thrill for us here in Thundra. First, let me summarize a couple of news before switching to our main topic; Sidekick Gitlab integration ...
GitLab: instant, inline, indispensable developer insights
Today we’re going to talk about letters, as in the alphabet. Did you ever see the Friends episode where Joey can’t afford an entire set of encyclopedias, so he just buys the ...
Integrating Checkmarx Security Results within GitLab
The automation and integration of Application Security Testing (AST) is essential for building out a true DevSecOps program. Automation is the easy part. Invoke a security scanners’ REST API or a command ...
Hitting the Trifecta with GitLab Automated Merge Requests
We’ve been working to integrate component intelligence from Nexus Lifecycle directly into source control management (SCM) systems so that developers can choose the best open source components and build secure applications from ...
Inserting security in GitLab merge requests!
Inserting security in Gitlab merge requests!ShiftLeft Inspect introduces an easy way to insert static code analysis in merge requests workflow in GitLab. To know more, read on.GitLab offers merge request workflow in ...
How to Use Gitlab-CI with Nexus
Recently I was asked to set up a CI-Pipeline for a Spring based application.I said "piece of cake", as I have already worked on Jenkins Pipeline, and knew about Maven so that ...
