News

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...
DataBreachToday4d
Patched GitLab Duo Flaws Risked Code Leak, Malicious Content
Hackers can exploit vulnerabilities in a generative artificial intelligence assistant integrated across GitLab's DevSecOps ...
TechRepublic2y
GitLab CI/CD Tool Review
and its License Compliance feature scans project dependencies for their licenses. GitLabs Code Quality Rounding out GitLab CI/CD’s features are container and dependency scanning that check for ...
Ars Technica1y
Maximum-severity GitLab flaw allowing account hijacking under active exploitation
According to Internet scans performed by security organization Shadowserver, more than 2,100 IP addresses showed they were hosting one or more vulnerable GitLab instances. The number of IP ...
Yahoo Finance1mon
GitLab Announces the General Availability of GitLab Duo with Amazon Q
SAN FRANCISCO, April 17, 2025--(BUSINESS WIRE)--All Remote - GitLab Inc., the most comprehensive AI-powered DevSecOps platform, today announced the general availability of GitLab Duo with Amazon Q.
Bleeping Computer2mon
GitLab patches critical authentication bypass vulnerabilities
GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE), fixing nine vulnerabilities, among which two critical severity ruby-saml library authentication bypass flaws.