Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
Bleeping Computer

Critical GitLab bug lets attackers run pipelines as any user

A critical vulnerability is affecting certain versions of GitLab Community and Enterprise Edition products, which could be exploited to run pipelines as any user. GitLab is a popular web-based ...
Zacks Investment Research on MSN

Can GitLab's DevSecOps Leadership Sustain Its Growth Momentum?

GitLab GTLB has built one of the most complete AI-native DevSecOps platforms, unifying code creation, testing and security ...
Dark Reading

Critical GitLab Bug Threatens Software Development Pipelines

A critical GitLab vulnerability could allow an attacker to run a pipeline as another user. GitLab is a popular Git repository, second only to GitHub, with millions of active users. This week, it ...
Zacks Investment Research on MSN

GitLab vs. Atlassian: Which DevOps Stock Should Investors Buy Now?

GitLab GTLB and Atlassian TEAM sit at the center of the enterprise DevSecOps and software-workflow landscape. Both platforms ...