Blog security

Browse articles that include the security tag

custom compliance frameworks - cover
Introducing Custom Compliance Frameworks in GitLab Reduce manual tracking, accelerate audit readiness, and enforce controls faster natively within GitLab DevSecOps workflows. Authors: Salman Ladha, Ian Khor Read Post
Bulletin Board tanukilifecycle.png

GitLab rotating Omnibus Linux package signing key

Learn who is impacted by the rotation of the GNU Privacy Guard (GPG) key and what you need to know.

Product security patch release cover

GitLab Patch Release: 17.10.4, 17.9.6, 17.8.7

Learn more about this patch release for GitLab Community Edition (CE) and Enterprise Edition (EE).

Security GitLab and HackerOne logo lockup

Enhance application security with GitLab + HackerOne

Learn about the GitLab + HackerOne partnership and how to easily implement an integration that improves your organization’s application security posture.

Security security 5 - cover

Secure and safe login and commits with GitLab + Yubico

Learn how GitLab and Yubico have partnered to strengthen software development security through robust authentication measures.

Product security team - cover

Improving OAuth ROPC security on GitLab.com

GitLab.com is improving the security of OAuth Resource Owner Password Credentials (ROPC) by requiring client authentication, effective April 8, 2025.

Security security - chainlink - cover

Strengthen data security with custom PII detection rulesets

This tutorial explains how GitLab's customizable Secret Detection rulesets enhance data security by identifying PII patterns in code repositories. Learn how AI can help.

Product security patch release cover

GitLab Patch Release: 17.10.1, 17.9.3, 17.8.6

Learn more about this patch release for GitLab Community Edition (CE) and Enterprise Edition (EE).

Security Security 5 - cover

Self-service security alert handling with GitLab's UAM

The User Attestation Module automates security alerts by routing them directly to team members for verification, reducing manual SecOps work and enhancing audit trails.

Bulletin Board checkmark - cover - security

GitLab achieves PCI DSS Attestation of Compliance

Learn how our completion of the AoC as a Level 1 Service Provider, along with our broader security credentials, helps us support customers' compliance efforts.

Ready to get started?

See what your team could do with a unified DevSecOps Platform.

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert