Blog Security

Browse articles from Security

custom compliance frameworks - cover
Introducing Custom Compliance Frameworks in GitLab Reduce manual tracking, accelerate audit readiness, and enforce controls faster natively within GitLab DevSecOps workflows. Authors: Salman Ladha, Ian Khor Read Post
Security GitLab and HackerOne logo lockup

Enhance application security with GitLab + HackerOne

Learn about the GitLab + HackerOne partnership and how to easily implement an integration that improves your organization’s application security posture.

Security security 5 - cover

Secure and safe login and commits with GitLab + Yubico

Learn how GitLab and Yubico have partnered to strengthen software development security through robust authentication measures.

Security security - chainlink - cover

Strengthen data security with custom PII detection rulesets

This tutorial explains how GitLab's customizable Secret Detection rulesets enhance data security by identifying PII patterns in code repositories. Learn how AI can help.

Security Security 5 - cover

Self-service security alert handling with GitLab's UAM

The User Attestation Module automates security alerts by routing them directly to team members for verification, reducing manual SecOps work and enhancing audit trails.

Security security - chainlink - cover

Vulnerability risk prioritization made simple with GitLab

GitLab provides detailed vulnerability risk data to assess the potential impact of detected vulnerabilities. Learn how this enables teams to effectively prioritize remediation efforts.

Security security team - cover

How GitLab measures Red Team impact: The adoption rate metric

Follow our journey to develop and implement better metrics, including how we used GitLab to track our results end-to-end. Also find out the lessons learned along the way.

Security security shield - cover

Introducing GitLab’s Open Source Security Center

Our open source repository of projects designed to enhance security operations and risk management will help developers adapt faster, respond smarter, and defend better — together.

Security Security 5 - cover

The ultimate guide to token management at GitLab

Learn all the steps in the end-to-end process of identifying, managing, and securing tokens for improved security across the software development lifecycle.

Security scanning - cover

How to scan a full commit history to detect sensitive secrets

Use GitLab Secret Detection to scan a repository's commit history, including branches. View results within the GitLab UI with just a few lines of code added to a pipeline file.

Ready to get started?

See what your team could do with a unified DevSecOps Platform.

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert