IDEA GitLab Solutions: Licencing, Hosting, Consulting and Training Services

GitLab Weekly Digest: AI, Feature Flags & Optimisation for UK DevOps Teams

Tue, 31 Mar 2026 02:00:00 +0200

GitLab Weekly Digest: Insights for UK DevOps from AI to Agile Planning

GitLab continues to drive innovation, delivering regular updates that streamline and secure development processes. This week, we explore several key topics impacting the efficiency and security of teams across the UK, from advanced AI functionalities and agile planning to package management. For organisations considering a migration from Azure DevOps to GitLab, these updates highlight the continuous advancements and reliability of the GitLab platform.

GitLab this week: safer releases, clearer planning

Thu, 26 Mar 2026 01:00:00 +0100

What this GitLab update means for UK delivery teams

In the UK market, a release is rarely just a release. It is a governance decision, a customer experience decision and, in many sectors, a compliance decision too. That is why this batch of GitLab updates is worth a closer look: it speaks directly to teams trying to move faster without creating avoidable operational risk.

A good starting point is Getting started with GitLab feature flags in Python. Feature flags are one of those tools that sound simple until you are trying to coordinate a release across multiple customer groups, regions or regulated environments. In practice, they give UK engineering teams a cleaner way to separate deployment from exposure. That matters whether you are running a fintech app, a public-sector platform or an enterprise SaaS service with strict change controls.

GitLab weekly digest: releases, AI and noise

Thu, 26 Mar 2026 01:00:00 +0100

GitLab weekly digest: what UK teams should know now

It has been one of those GitLab weeks where the releases are not just about shiny features. There is a very practical mix of security fixes, workflow improvements, and AI-enabled changes that matter if you are running GitLab in a real enterprise environment and trying to keep delivery predictable.

Security and patching are still the first job

The patch release for 18.10.1, 18.9.3 and 18.8.7 is the kind of update that platform teams in the UK should treat as routine-but-urgent. If you manage self-managed GitLab for a finance team in London, a public sector environment, or a software business with regulated customers, patch windows need to be planned carefully but they should not drift. The official patch release notes make the usual point: install the fixes promptly, and do it in a controlled way.

GitLab Patch Release: 18.10.1, 18.9.3, 18.8.7 – Securing Your DevOps Pipeline

Wed, 25 Mar 2026 01:00:00 +0100

GitLab Patch Release: 18.10.1, 18.9.3, 18.8.7 – Critical Updates for UK Enterprises

Maintaining an up-to-date and secure environment is paramount for businesses across the UK. We are pleased to announce the release of crucial patch updates for GitLab Community Edition (CE) and Enterprise Edition (EE): versions 18.10.1, 18.9.3, and 18.8.7. These updates are vital for ensuring the continued stability, optimal performance, and, most importantly, strong security of your DevOps projects.

Taming SAST False Positives for UK Compliance

Wed, 25 Mar 2026 01:00:00 +0100

From Alert Fatigue to Assured Security: Taming SAST False Positives

For countless large enterprises across the UK, especially those operating under strict regulatory frameworks like the FCA or PRA, the promise of integrated DevSecOps with GitLab is incredibly appealing. The idea of shifting security left, embedding checks directly into the development pipeline, brings significant efficiencies and reduces risk late in the cycle. However, a common wall many of our FTSE 100 and regulated banking clients hit is the sheer volume of “noise” generated by Static Application Security Testing (SAST) tools. SAST is essential, non-negotiable even, for proving due diligence in many compliance regimes. But if 80% of its findings are irrelevant — test code, vendored dependencies, or known false positives in legacy systems — security teams quickly drown in alerts. This isn’t just an annoyance; it’s a critical blocker to measurable security improvement and audit readiness.

Agentic Code Reviews with Flat-Rate Pricing

Thu, 19 Mar 2026 01:00:00 +0100

Agentic Code Reviews with Flat-Rate Pricing

GitLab revolutionises development processes with its intelligent, agentic code reviews combined with flat-rate pricing. Teams no longer need to juggle fluctuating costs, now streamlined with predictable expenses, enhancing productivity across the board.

The introduction of flat-rate pricing simplifies financial planning for businesses, ensuring that development teams can focus on innovation without being hampered by budget constraints. GitLab’s approach to code reviews integrates smoothly within the platform, fostering a culture of continuous improvement and efficiency.

GitLab 18.10 Expands Agentic AI to More Teams

Thu, 19 Mar 2026 01:00:00 +0100

GitLab 18.10: Expanding Agentic AI Access

We are excited to announce that GitLab 18.10 has rolled out expanded access to Agentic AI, now available to even more teams on GitLab. This latest release underscores our commitment to elevating the capabilities of your DevOps infrastructure with advanced AI technologies.

Agentic AI has been a significant advantage for many organisations, allowing for smarter automation, enhanced code suggestions, and optimised workflows. With this update, more teams can harness these benefits, driving innovation and efficiency in their projects. As GitLab continues to evolve, we are dedicated to providing modern tools that meet the ever-growing demands of modern software development.

GitLab 18.10 Released: Enhancements for DevOps Excellence

Thu, 19 Mar 2026 01:00:00 +0100

GitLab 18.10 Released: A Leap Forward in DevOps Efficiency

GitLab has unveiled its latest version, GitLab 18.10, as of March 19, 2026, bringing an array of new features and enhancements designed to streamline the DevOps workflow. This release underscores GitLab’s commitment to providing comprehensive tools that enable teams to collaborate more effectively and deliver exceptional software with greater speed and reliability.

One of the major highlights of this release is the enhanced CI/CD capabilities. With improved pipeline visualization, teams can now have a clearer view of their processes, thus identifying potential bottlenecks more quickly. Additionally, GitLab 18.10 introduces more reliable integration with popular DevOps toolchains, ensuring a smoother workflow across different platforms.

GitLab 18.10: AI-Native Triage and Remediation

Thu, 19 Mar 2026 01:00:00 +0100

Introducing AI-Native Triage and Remediation with GitLab 18.10

The latest release of GitLab, version 18.10, marks a significant step forward in project management and collaborative coding with its integration of AI-native triage and remediation features. This update automates the triaging process, making it faster and more efficient for teams to identify and resolve issues. By reducing human intervention, it allows teams to focus on development and innovation, assured that AI will handle the initial assessment of issues.

GitLab 18.10: AI-Native Triage, Remediation & Free-Tier Credits for UK Teams

Thu, 19 Mar 2026 01:00:00 +0100

GitLab 18.10: Transforming Security and Accessibility for UK DevOps Teams with AI

GitLab 18.10 marks a significant leap forward in empowering development teams with advanced AI capabilities for security and broader accessibility. This release introduces new AI-powered security features designed to enhance the quality and speed of vulnerability management. Crucially, it also democratises access to the Agentic AI experience for smaller and mid-sized teams on GitLab.com’s Free tier, through the purchase of GitLab Credits. For UK businesses, this translates to a substantial boost in the efficiency and security of their DevOps workflows.

Streamline Code Reviews with GitLab

Thu, 19 Mar 2026 01:00:00 +0100

Efficient Code Reviews with GitLab

Development teams often struggle with code reviews due to bottlenecks and cost concerns. GitLab has introduced a solution to streamline the process without incurring additional expenses.

Code reviews are vital for maintaining high-quality code and ensuring team collaboration. However, they can become a bottleneck that slows down the development process. Traditional methods often involve manual processes and third-party tools that add complexity and cost.

GitLab addresses these challenges by offering an integrated platform where code reviews are a seamless part of the development workflow. This integration eliminates the need for separate tools, thus reducing both overhead and latency.

Use GitLab's Virtual Registry for Secure Docker Deployment

Thu, 12 Mar 2026 01:00:00 +0100

Enhancing Security with GitLab’s Container Virtual Registry

Containerization has transformed software development and deployment. GitLab continues to lead the way by enhancing its Container Virtual Registry with Docker-hardened images, a move that emphasizes security and reliability for its users. In an era where security breaches are ever-looming, employing pre-hardened Docker images significantly mitigates potential vulnerabilities.

GitLab’s solution offers a seamless integration, allowing teams to automate the process of pulling these secured images directly into their pipelines. This feature not only streamlines workflow but also ensures that the applications running in containers are built on a consistent and secure foundation. Docker-hardened images are curated by experts, following meticulous processes that focus on minimizing attack surfaces and adhering to best practices in container security.

GitLab 18.9.2 Patch Release

Wed, 11 Mar 2026 01:00:00 +0100

Patch Release: GitLab 18.9.2 Now Available

We are excited to announce the release of GitLab 18.9.2, a latest patch that enhances system stability and security. This release addresses several key issues, providing all users with an improved experience.

For our GitLab Select Partner clients in Czech, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the United Kingdom, and for our remote teams in Israel, South Africa, and Paraguay, this patch comes highly recommended to ensure your projects maintain optimal performance and security.

Automating Detection Gap Analysis with GitLab Duo Agent Platform

Tue, 10 Mar 2026 01:00:00 +0100

Enhancing Detection Capabilities with GitLab Duo and Agent Platform

The ability to swiftly identify and address vulnerabilities is vital. GitLab introduces a groundbreaking approach with its Duo Agent Platform, automating detection gap analysis to provide enterprises with a strong arsenal against potential threats.

The Duo Agent Platform uses advanced algorithms and machine learning techniques to continuously monitor codebases for inconsistencies, ensuring that even the most elusive vulnerabilities are brought to light. This automation not only streamlines the detection process but also empowers development teams to focus on resolution and innovation.

Boost Your Repository Navigation with GitLab's File Tree Browser

Mon, 09 Mar 2026 01:00:00 +0100

GitLab, the DevOps platform of choice, has introduced an exciting feature aimed at enhancing repository navigation: the file tree browser. Streamlining the way developers interact with their code, this addition is part of GitLab’s continuous mission to improve efficiency and user experience. With a focus on providing faster and more intuitive access to file structures, the file tree browser empowers users to manage their repositories with ease. This feature addresses the need for a unified view of folders and files, offering an expandable and collapsible tree format that significantly reduces navigation time and effort. Users can now smoothly navigate complex codebases, viewing folder contents at a glance, and efficiently locating specific files without unnecessary clicks.

Comprehensive Guide to GitLab Container Scanning

Thu, 05 Mar 2026 01:00:00 +0100

Comprehensive Guide to GitLab Container Scanning

Modern DevOps practices demand strong security measures, and GitLab’s Container Scanning is a vital tool in the security arsenal for software development teams. By integrating security checks early in the development process, Container Scanning helps identify vulnerabilities in your Docker images, offering actionable insights before deployment.

GitLab Container Scanning automatically analyses Docker images within your CI/CD pipelines, scanning for vulnerabilities that could pose a threat once your application goes live. This comprehensive solution is integrated into GitLab’s CI/CD environment, providing reports that developers can review and address in real-time.

Connect Any Tool with MCP to Extend GitLab DUO and Agent Platform

Thu, 05 Mar 2026 01:00:00 +0100

Extend GitLab DUO and Agent Platform: Connect Any Tool with MCP

The GitLab ecosystem continues to grow, offering new possibilities for integration and collaboration. The latest addition is the integration with the MCP (Managed Connectivity Platform), which enhances the capabilities of the GitLab Duo and Agent platforms. This expansion opens up numerous opportunities for users to connect various tools, making workflows more efficient and cohesive.

With this integration, users can use the flexibility and power of MCP to facilitate connectivity between GitLab and a plethora of third-party tools. Whether you are looking to integrate with existing CI/CD pipelines, automate deployments, or streamline your development process, the MCP connection offers a comprehensive solution.

Crafting a Strong Security Control Framework with GitLab

Wed, 04 Mar 2026 01:00:00 +0100

Crafting a Strong Security Control Framework: The GitLab Approach

Building a strong security control framework is paramount for safeguarding digital assets. GitLab, a powerhouse in the DevOps domain, has meticulously crafted such a framework from the ground up. This journey towards enhancing security not only reinforces trust but also sets a benchmark for other organizations aiming for similar goals.

At the heart of GitLab’s strategy lies a structured approach that begins with understanding the vital security outcomes the organization intends to achieve. The focus is on creating a framework that is both comprehensive and adaptable, catering to a wide array of security challenges. Importantly, GitLab’s framework is not a static entity; it’s designed to evolve in response to emerging threats and the dynamic needs of the industry.

Maximising Software Delivery with AI Prompts

Wed, 04 Mar 2026 01:00:00 +0100

Maximising Software Delivery with AI Prompts

In the realm of software delivery, efficiency is crucial. Using AI can significantly enhance the performance of development teams. This guide explores some of the most effective AI prompts that can expedite your software delivery workflow.

Simplifying Code Reviews

AI can automate many steps in code reviews, offering suggestions and identifying potential issues before they reach human reviewers. This ensures faster and more accurate code evaluation.

AI and the Governance of Risk Detection

Fri, 27 Feb 2026 01:00:00 +0100

AI’s Role in Vulnerability Detection

Artificial Intelligence (AI) is increasingly being employed to identify vulnerabilities in software systems. Its ability to process vast amounts of data makes it a valuable tool in pinpointing potential security risks that might otherwise go unnoticed by human analysts. AI not only enhances the speed but also the accuracy of vulnerability detection, providing a strong layer of defence against potential cyber threats.

Human Governance Over AI

Despite AI’s capabilities in detecting vulnerabilities, the question of who governs the risk remains pivotal. Human oversight is essential to interpret AI’s findings accurately and make informed decisions. AI can flag anomalies and potential risks, but it is the responsibility of skilled professionals to assess the context and implications of these findings, ensuring that AI’s recommendations are actionable and prioritised appropriately.

GitLab Duo: Revolutionary Development Efficiency with AI

Thu, 26 Feb 2026 01:00:00 +0100

GitLab Duo: A Leap in Development Efficiency

GitLab introduces the Duo Agent Platform, a collaborative innovation with Claude AI, revolutionising development processes. This new platform empowers developers with enhanced capabilities, significantly boosting productivity by integrating artificial intelligence directly into the development lifecycle.

Duo Agent Platform, a unique blend of GitLab’s reliable DevOps suite and Claude’s modern AI functionality, facilitates smoother workflows. It allows teams to automate mundane tasks, thus allowing developers to focus more on creative problem-solving and innovation. This synergy not only speeds up the development process but also reduces errors, ensuring a more efficient codebase.

GitLab Introduces Managed Service Provider Partner Program

Thu, 26 Feb 2026 01:00:00 +0100

Exploring the GitLab Managed Service Provider Partner Program

As a leading partner for DevOps solutions, IDEA GitLab Solutions is excited to share the introduction of GitLab’s Managed Service Provider (MSP) Partner Program. This new initiative is designed to equip MSPs with the resources, training, and support needed to deliver exceptional DevOps services to clients using GitLab’s comprehensive platform.

The MSP Partner Program is a significant step for GitLab as it aims to enable more businesses worldwide to enhance their software development processes. By joining this program, MSPs gain access to technical expertise and a suite of tools essential for implementing DevOps practices efficiently.

Optimising Deployments: GitLab and Google Agent Engine

Thu, 26 Feb 2026 01:00:00 +0100

Enhanced Deployments with GitLab and Google Agent Engine

GitLab has introduced innovative enhancements to streamline and secure deployments directly to the Google Agent Engine. This feature empowers teams to deploy rapidly without compromising security, utilising the seamless integration that GitLab offers with Google Cloud solutions.

The strategic advancements in this process ensure that deployment pipelines are not only fast but also highly reliable. By using the full potential of GitLab’s CI/CD capabilities, development teams can maintain productivity while ensuring strong security protocols are inherently built into their workflows.

Enhance Your CI/CD Processes with New GitLab Features

Wed, 25 Feb 2026 01:00:00 +0100

Enhance Your CI/CD Processes with New GitLab Features

Efficient CI/CD (Continuous Integration/Continuous Delivery) pipelines are crucial for maintaining a competitive edge. GitLab has recently unveiled new metrics and registry features designed to streamline these processes, helping teams to minimise bottlenecks and enhance productivity.

Advanced Metrics for Deeper Insights

GitLab’s new metrics provide an in-depth understanding of CI/CD performance. By offering comprehensive data on stages such as deployment frequency and pipeline efficiency, teams can identify trends and areas for improvement with greater precision. This increased visibility enables more informed decision-making, ultimately leading to faster and more reliable software delivery.

GitLab 18.9.1 Patch Release Announced

Wed, 25 Feb 2026 01:00:00 +0100

GitLab 18.9.1: Patch Release Overview

The latest GitLab patch, version 18.9.1, has been officially released on 25th February 2026. This update primarily focuses on providing critical security fixes and addressing key bugs to enhance the user experience and system stability. If you are currently utilising GitLab 18.9, it’s highly recommended to upgrade to this latest version to ensure that your systems remain secure and reliable.

For organisations operating within the regions of Czech, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the United Kingdom, and with remote associates in Israel, South Africa, and Paraguay, IDEA GitLab Solutions offers comprehensive professional consulting services and licensing opportunities. To explore these offers, kindly visit gitlab.solutions.

GitLab Introduces Passkeys for Passwordless Sign-in and 2FA

Wed, 25 Feb 2026 01:00:00 +0100

Embracing the Future of Security with Passkeys on GitLab

As security requirements advance, our approach must evolve with them. GitLab has taken a significant step in this direction by introducing passkeys—an innovative solution enabling passwordless sign-in and two-factor authentication (2FA). With passkeys, users can experience a seamless and secure login experience, minimizing the risk of phishing attacks and unauthorized access.

Passkeys use public key cryptography to authenticate users, meaning that even if hackers intercept the authentication materials, they cannot misuse them. GitLab’s commitment to enhancing user security is evident in this rollout, enabling smoother yet secure workflows for development teams worldwide.

GitLab Extends GPG Key Validity for Package Repositories

Tue, 24 Feb 2026 01:00:00 +0100

Extended Validity of GPG Key for GitLab Package Repositories

The integrity and authenticity of software are crucial for maintaining security and trust among users. Understanding this, GitLab has extended the validity of the GPG key used for signing the metadata of its package repositories. This extension ensures that users can continue to have confidence in the packages they download and use from GitLab repositories.

GPG keys are an essential part of the security infrastructure, providing a way to verify that the content has not been tampered with, and indeed originates from the expected source. The current GPG key was originally set to expire sooner but will now remain valid, allowing users to carry on with seamless package updates and installations without security warnings or errors.

GitLab Omnibus Package Key Expiry Extended

Fri, 20 Feb 2026 01:00:00 +0100

GitLab Omnibus Package Signing Key Expiry Extended to 2028

In a significant update for GitLab users, the Omnibus package signing key expiration date has been extended to 2028. This change ensures enhanced security and reliability, reassuring users of continued integrity in software distribution. The extension of the key’s expiration aligns with GitLab’s commitment to maintaining a secure and efficient DevOps environment across all systems. Users are encouraged to update any key configurations to reflect this change, ensuring seamless package management operations. For those operating in regions like Czech, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the United Kingdom, and other areas, IDEA GitLab Solutions is available to offer professional consulting and licenses, ensuring your systems remain updated and secure. More details can be found at GitLab Solutions.

Advancements in Security with GitLab's Updated Dashboard

Thu, 19 Feb 2026 01:00:00 +0100

Enhancing Security Oversight with GitLab’s Updated Security Dashboard

At GitLab, continuous innovation remains the cornerstone of our approach to security management. The updated GitLab Security Dashboard furnishes users with an advanced tool for streamlined vulnerability remediation tracking, ushering in a pivotal change for DevOps and security teams. These enhanced capabilities promote precision in identifying potential vulnerabilities while underlining efficiencies in oversight processes.

The revamped dashboard now provides a unified view, enabling quick identification and prioritization of issues. It empowers users to manage vulnerabilities without needing to assimilate vast amounts of information manually. The intuitive interface offers accessible insights into security issues across projects from a single pane of glass, critically reducing response times.

Agentic AI: Enhancing Enterprise Control

Thu, 19 Feb 2026 01:00:00 +0100

Agentic AI: Enhancing Enterprise Control with Self-Hosted Solutions

Enterprises demand strong control and security measures that match their strategic objectives. Introducing Agentic AI, a groundbreaking solution tailored for those seeking a hybrid between control and flexibility in AI deployment.

The Duo-Agent Platform

Agentic AI’s Duo-Agent Platform introduces a versatile system that enhances AI integration within enterprise environments. It empowers companies to self-host their AI models, maintaining complete sovereignty over data and AI processes.

GitLab 18.9 Released: Enhanced Collaboration and Security

Thu, 19 Feb 2026 01:00:00 +0100

Introducing GitLab 18.9 with Enhanced Collaboration and Security Features

We are excited to announce the release of GitLab 18.9, packed with new features and enhancements designed to improve collaboration and security within software development teams. This latest release continues GitLab’s commitment to providing a comprehensive DevSecOps platform that empowers teams to work more efficiently and securely.

One of the standout features of GitLab 18.9 is the improved Code Review Workflow, allowing for quicker and more streamlined code reviews. This feature helps teams to minimize review bottlenecks, enabling faster delivery of high-quality code.

GitLab Threat Intelligence: North Korean Cyber Tradecraft Unveiled

Thu, 19 Feb 2026 01:00:00 +0100

Unveiling North Korean Cyber Tradecraft

In a groundbreaking revelation, GitLab’s Threat Intelligence team released insights into the covert cyber operations of North Korean hackers. The detailed analysis exposes sophisticated methods used by unknown groups allegedly backed by North Korea. These campaigns have targeted critical infrastructure worldwide, with advanced techniques such as social engineering and zero-day exploits.

The report highlights the intricate network and strategies employed to gather information and disrupt international systems. GitLab’s findings underscore the importance of strong cybersecurity measures and underscore the need for global cooperation to counter these threats.

GitLab Backs 99.9% Availability with Service Credits for Ultimate Customers

Wed, 18 Feb 2026 01:00:00 +0100

Enhancing Service Assurance with 99.9% Availability Commitment

GitLab, a leader in DevOps solutions, is reinforcing its reliability commitment by offering 99.9% availability assurance with service credits for their Ultimate plan clients. This initiative ensures that GitLab Ultimate customers are provided with additional peace of mind, knowing that their critical operations depend on a platform dedicated to reliability and minimal downtime.

The 99.9% availability target stands as a testament to GitLab’s dedication to exceptional service quality. To guarantee this level of performance, GitLab utilises a comprehensive set of monitoring and alert systems, ensuring quick responses to any potential service interruptions.

Claude Opus 4.6 Now Available in GitLab Duo Agent Platform

Tue, 17 Feb 2026 01:00:00 +0100

Claude Opus 4.6 Integration in GitLab Duo Agent Platform

We are excited to announce the integration of Claude Opus 4.6 into the GitLab Duo Agent Platform, a significant step forward in streamlining AI-based operations. This powerful addition optimises workflows with enhanced AI capabilities, offering developers comprehensive tools for increased efficiency and innovation.

The integration allows users to use Claude Opus’s advanced AI features, embedded within GitLab’s Duo environment. This means faster processing times, improved data analysis, and more intuitive operational tasks, making it ideal for teams aiming for agility and scalability in their projects.

DevSecOps-as-a-Service with GitLab on Oracle Cloud Infrastructure

Tue, 10 Feb 2026 01:00:00 +0100

Data Intensity Delivers Scalable DevSecOps-as-a-Service with GitLab and Oracle Cloud

Innovative cloud services provider Data Intensity has stepped forward with a powerful new offering for enterprises looking to combine speed, security, and scalability in software development: DevSecOps-as-a-Service hosted on Oracle Cloud Infrastructure (OCI). Powered by GitLab, this streamlined solution enables organisations to efficiently integrate development, security, and operations into a single automated workflow.

Data Intensity utilises GitLab’s comprehensive lifecycle platform to bolster collaboration, enforce security standards, and optimise software delivery—all within the strong and cost-effective environment of OCI. Designed to support enterprise-level scaling, their GitLab instance offers multi-tenant, containerised CI/CD pipelines that cater to the most complex requirements. OCI’s native capabilities such as Terraform and Kubernetes integrations ensure seamless deployment, while performance tuning by Data Intensity further enhances usability.

GitLab 18.8.4 Patch Update Release

Tue, 10 Feb 2026 01:00:00 +0100

Patch Update: GitLab 18.8.4 Released

We are thrilled to announce the release of GitLab 18.8.4, a patch update that brings a slew of improvements and crucial fixes to enhance the platform’s performance and reliability. Whether you’re a developer, project manager, or part of the IT operations team, this update is tailored to streamline your workflow and ensure a seamless experience.

The latest patch addresses several security vulnerabilities and enhances the system’s overall reliability. Users can expect improved system stability, better integration capabilities, and efficiency in project handling, making day-to-day operations smoother and more secure.

GitLab AI Gateway 18.8.1 Patch Release Unveiled

Fri, 06 Feb 2026 01:00:00 +0100

Introducing GitLab AI Gateway 18.8.1 Patch Release

We are thrilled to announce the release of GitLab AI Gateway 18.8.1, marking another step forward in our commitment to enhancing the AI-powered DevOps experience. This patch addresses crucial bug fixes and bolsters functionality, ensuring seamless integration and performance across projects.

This update resolves several key issues identified by our community and development team, targeting improved workflow efficiencies and stability. Notable fixes include AMI compatibility adjustments and enhanced security features to guard against potential threats.

GitLab 18.8.3 Security Release — Protect Your Instance with Latest Patch

Wed, 04 Feb 2026 01:00:00 +0100

GitLab 18.8.3 Security Update Now Available

GitLab has released version 18.8.3, a critical security update for users running GitLab Community and Enterprise Editions. This release addresses several key vulnerabilities and is strongly recommended for all deployments using earlier 18.8.x versions.

The update patches three important security issues:

Stored XSS in the merge request interface: Introduced due to insufficient sanitisation of input fields, potentially allowing attackers to execute arbitrary code.
Improper permission validation for email notifications: Which could allow confidential issue titles to be exposed to unauthorised recipients.
Insufficient restrictions for protected tag deletion: Permitting users without appropriate permissions to delete or overwrite protected tags under certain conditions.

All GitLab administrators are urged to update their installations immediately to ensure protection against potential exploitation. The 18.8.3 release is available via official download sources for GitLab Community (gitlab-ce) and GitLab Enterprise (gitlab-ee).

Discover What's New in Git 2.53.0

Mon, 02 Feb 2026 01:00:00 +0100

New in Git 2.53.0: Boosting Performance and Developer Productivity

The Git community has released version 2.53.0, introducing several notable improvements that enhance the developer experience and increase the efficiency of Git workflows. With a continued focus on performance and usability, Git 2.53.0 brings powerful updates to assist teams scaling projects or seeking faster, more adaptable version control solutions.

Key Enhancements in Sparse-Checkout

Sparse-checkout functionality sees significant advancements in Git 2.53.0. Developers can now enjoy better clarity and performance when interacting with partially checked-out repositories. Enhancements to the --cone mode bring stability and improve user experience, particularly when switching between directories in monorepo environments.

Integrating GitLab SAML SSO with Google Workspace: A Step-by-Step Guide

Tue, 27 Jan 2026 01:00:00 +0100

Configure GitLab SAML SSO with Google Workspace

Secure and simplify access to your GitLab instance by setting up Single Sign-On (SSO) using SAML with Google Workspace. This integration ensures seamless authentication for users across your organisation, enhances your security posture, and aligns DevSecOps practices with enterprise identity management standards.

Why Use SAML SSO with GitLab?

SAML-based SSO allows IT administrators to centralise access control and streamline user login processes. By connecting GitLab to Google Workspace, users can authenticate using their corporate credentials, reducing login complexity and improving compliance.

GitLab 18.8.2 Patch Release Now Available

Wed, 21 Jan 2026 01:00:00 +0100

GitLab 18.8.2 Patch Resolves Key Regressions

We are pleased to announce that a new patch release, GitLab 18.8.2, is now available. This update addresses several regression issues that were introduced in version 18.8, ensuring greater stability and performance for GitLab users across all instances.

This latest release includes important bug fixes for the GitLab self-managed and GitLab.com platforms. In particular, the 18.8.2 patch corrects issues affecting Gitaly, Runner registration tokens, and problems with pipeline consistency under specific use cases. Users are advised to review the full changelog for a detailed list of improvements.

GitLab Bug Bounty Policy Updated to Encourage Secure Contributions

Tue, 20 Jan 2026 01:00:00 +0100

GitLab Enhances Bug Bounty Policy to Strengthen Open Source Security

As part of its continued dedication to transparency, security, and fostering a stronger open source ecosystem, GitLab has introduced several key updates to its Bug Bounty Program Policy. These changes are designed to better support security researchers, promote responsible disclosure, and ensure the integrity of GitLab’s product offerings.

The updated policy provides clearer guidance on scope, testing environments, and eligibility, helping ethical hackers and security researchers navigate the program more efficiently. In particular, GitLab is now offering increased reward payouts based on vulnerability severity under the Bugcrowd platform, further incentivising responsible reporting of critical issues.

GitLab 18.8.1 Security Patch Released – Immediate Upgrade Recommended

Mon, 19 Jan 2026 01:00:00 +0100

GitLab 18.8.1: Important Security Release Now Available

GitLab has announced the immediate availability of version 18.8.1 for both Community Edition (CE) and Enterprise Edition (EE). This release contains critical security fixes and is strongly recommended for all users.

Version 18.8.1 addresses several vulnerabilities, including two medium-severity issues that could potentially allow unauthorised users to craft or manipulate project and user data under specific conditions. These fixes enhance overall system resilience across multiple endpoints used in GitLab’s user and project management modules.

GitLab 18.8: Compliance, Security and CI/CD Enhancements Released

Thu, 15 Jan 2026 01:00:00 +0100

What’s New in GitLab 18.8: Enhanced Compliance, Security, and Efficiency

GitLab 18.8 is now available, bringing a host of powerful new features designed to help teams move faster, stay secure, and ensure compliance at scale. As your trusted GitLab Select Partner covering Central and Eastern Europe as well as globally through our international teams, we’re excited to guide you through what’s new and how your organisation can take advantage of the latest enhancements.

GitLab Credits Now Available: Streamline Billing and Resource Usage

Thu, 15 Jan 2026 01:00:00 +0100

Introducing GitLab Credits: A Simpler Way to Manage Your GitLab Account

GitLab has launched a new, flexible purchasing system called GitLab Credits. Designed to streamline the way you manage and allocate spending on GitLab.com, GitLab Credits offer a centralised balance you can use for a variety of services including CI minutes, storage, and user seats. This innovation especially benefits organisations seeking more efficient and adaptable ways to manage and scale DevSecOps usage.

GitLab Duo Agent Platform Achieves General Availability

Thu, 15 Jan 2026 01:00:00 +0100

GitLab Duo Agent Platform Now Generally Available

We are excited to announce that the GitLab Duo Agent Platform is now generally available, bringing intelligent AI-assisted workflows directly into the DevSecOps lifecycle. This marks a significant milestone in GitLab’s ongoing commitment to streamlining software development by integrating AI capabilities that accelerate delivery and improve code quality.

The GitLab Duo Agent Platform allows for seamless integration of AI within your CI/CD workflows. By embedding intelligent agents into your pipelines, development teams can automate repetitive tasks, receive code suggestions, and optimise testing processes. These agents are designed with security in mind, ensuring organisations can maintain their high standards without compromising innovation velocity.

Customising GitLab Duo Chat with Rules, Prompts, and Workflows

Wed, 14 Jan 2026 01:00:00 +0100

Enhancing Productivity with Custom GitLab Duo Chat Rules, Prompts, and Workflows

GitLab’s commitment to AI-fuelled developer experience continues to evolve with its flexible Duo Chat tool. The latest improvements allow you to customise Chat’s behaviour, adapt prompts to your team’s workflow, and refine the responses that suit your organisation’s unique needs. Whether you’re an individual contributor or part of an enterprise team, these enhancements are designed to boost software delivery efficiency and collaboration.

Discover and Share AI Agents with GitLab’s AI Catalog

Wed, 14 Jan 2026 01:00:00 +0100

Streamline Your Workflows with GitLab’s New AI Catalog

GitLab has introduced its innovative AI Catalog, a powerful solution for discovering, reusing, and sharing AI-powered DevSecOps agents. This catalogue acts as a central hub for helpful, ready-to-use AI tools crafted to enhance productivity, code quality, and team collaboration across the software development lifecycle.

With the AI Catalog, developers and DevOps practitioners can easily find agents tailored to specific tasks—from code suggestions to merge request summaries and vulnerability triage. These agents are built using GitLab Duo’s Extend framework, allowing organisations to rapidly customise AI logic that aligns perfectly with internal workflows and business processes.

Getting Started with GitLab Duo: Introducing Agentic Chat

Wed, 14 Jan 2026 01:00:00 +0100

Getting Started with GitLab Duo’s AI Agentic Chat

GitLab continues to lead the way in DevSecOps innovation with the introduction of GitLab Duo’s Agentic Chat. This exciting experimental feature streamlines collaboration and accelerates software delivery by combining conversational AI with contextual understanding of your projects. Unlike traditional chatbots, Agentic Chat is powered by GitLab’s intelligence framework and goes beyond summarising tasks — it understands project data, updates issues, and assists in job execution with precision.

Getting Started with the GitLab Duo Agent Platform

Wed, 14 Jan 2026 01:00:00 +0100

Exploring the GitLab Duo Agent Platform: Your Complete Getting Started Guide

The GitLab Duo Agent platform is revolutionising the way DevSecOps teams work by integrating AI into the development lifecycle. Designed to keep your code, pipelines, and environments secure and aligned with organisational policies, the GitLab Duo Agent offers an intelligent assistant right where developers work — in their IDEs.

What Is GitLab Duo Agent?

GitLab Duo Agent is part of the broader GitLab Duo offering. It connects your favourite IDE (like VS Code) directly to GitLab, enabling intelligent suggestions, vulnerability detection, code explanations, and even issue or merge request generation without switching context.

GitLab Agents Explained: Foundational vs Custom vs External

Wed, 14 Jan 2026 01:00:00 +0100

Exploring GitLab Agents: Foundational, Custom & External

As organisations increasingly adopt GitOps for Kubernetes management, GitLab continues to enhance its agent ecosystem to provide flexibility and scalability for various use cases. In this article, we explore the three distinct types of GitLab agents: Foundational, Custom, and External.

Foundational Agents

Foundational agents are built-in and maintained by GitLab. They serve as the groundwork for managing clusters, offering a strong integration with GitLab’s UI, project structure, and access controls. These agents allow users to define infrastructure as code and automate continuous deployment workflows, all from within GitLab.

GitLab Duo Agent Platform: A New Era for Custom AI in DevSecOps

Wed, 14 Jan 2026 01:00:00 +0100

Introducing the GitLab Duo Agent Platform

GitLab continues its mission to integrate AI into the software development lifecycle with the launch of the GitLab Duo Agent Platform. This innovative offering takes GitLab’s AI-powered DevSecOps capabilities even further by providing users the ability to extend GitLab Duo with their own intelligent agents.

The GitLab Duo Agent Platform is designed to be both powerful and flexible, offering a new level of customisation within GitLab environments. At its core, this platform allows development teams to build their own AI agents capable of performing complex workflows, automating repetitive tasks, and promoting enhanced developer efficiency—all while maintaining the security and compliance GitLab is recognised for.

Harnessing GitLab Duo: Multi-Agent Workflows Redefined

Wed, 14 Jan 2026 01:00:00 +0100

Exploring Multi-Agent Workflows with GitLab Duo

The future of software development hinges on intelligent collaboration between humans and AI. GitLab Duo is pioneering this future by introducing Multi-Agent Workflows, an innovative solution that enables autonomous AI agents to work alongside engineers to streamline development processes. This forward-looking system moves beyond traditional AI pair programming and embraces a more orchestrated, intelligent team workflow.

Multi-Agent Workflows use purpose-built AI agents to independently complete tasks such as generating code, producing tests, reviewing merge requests, and monitoring issues. Rather than simple tool assistance, these agents interact with one another, share context, and act sequentially to achieve goals defined by the user. Each agent focuses on a specific domain and executes a set of functions based on policies, system prompts, and contextual awareness across the DevSecOps lifecycle.

Streamlining AI Development: Monitor, Manage, and Automate AI Workflows with GitLab

Wed, 14 Jan 2026 01:00:00 +0100

Monitor, Manage, and Automate AI Workflows with GitLab

Organisations are challenged to deliver AI solutions efficiently, securely, and responsibly. GitLab provides an integrated DevSecOps platform designed to help teams streamline AI development workflows — from idea to production — all in a single, unified environment.

With GitLab, you can monitor AI workflows using built-in observability tools that make it easier to track pipelines, model performance, and system health. This enhances accountability, encourages responsible AI usage, and ensures alignment with organisational governance policies.

Mandatory Multi-Factor Authentication is Coming to GitLab.com

Fri, 09 Jan 2026 01:00:00 +0100

Securing GitLab.com with Mandatory Multi-Factor Authentication

GitLab is taking a major step to improve the security of all users on GitLab.com by gradually making multi-factor authentication (MFA) mandatory. This strategic move reinforces GitLab’s commitment to safeguard developer accounts and protect source code across millions of users.

The roll-out of mandatory MFA begins in Q2 2024 and aims to reach full implementation by the end of 2024. It will onboard users in phases based on account activity, access level, and project roles.

Empowering IIT Bombay Students to Build the Future with GitLab

Thu, 08 Jan 2026 01:00:00 +0100

Empowering Innovation: How IIT Bombay Students Code the Future with GitLab

The Indian Institute of Technology Bombay (IITB), one of Asia’s most prestigious technological institutions, is shaping the future through innovation, collaboration and modern tools. At the heart of this academic transformation is GitLab, the single DevSecOps platform that helps students and researchers streamline their development work and embrace modern software practices.

With thousands of students involved in high-end research and practical development projects, IIT Bombay relies on GitLab to simplify source management, issue tracking, and CI/CD automation across various disciplines. From aerospace to bioengineering, GitLab facilitates collaborative teamwork through version control, agile workflows, and a unified platform for code, making students better prepared for real-world software development.

How AI is Transforming DevSecOps — Join GitLab Transcend to See What’s Next

Thu, 08 Jan 2026 01:00:00 +0100

Discover How AI is Transforming DevSecOps at GitLab Transcend

Artificial Intelligence (AI) is no longer just a futuristic concept — it’s fundamentally reshaping how teams deliver software, integrate security, and automate development operations. GitLab invites you to GitLab Transcend, a virtual event scheduled for January 17, 2024, where industry leaders and practitioners will showcase how AI is revolutionising DevSecOps.

At GitLab Transcend, you’ll see real-world use cases of AI-enhanced workflows, from reducing cycle times and automating tests to accelerating security and compliance. Presentations will dive into key topics such as AI-assisted code generation, intelligent workflow automation, and scaling secure software delivery — all central to high-performing DevSecOps practices.

GitLab 18.7.1 Patch Release Highlights Critical Fixes

Wed, 07 Jan 2026 01:00:00 +0100

GitLab 18.7.1 Patch Release Now Available

The GitLab team has released version 18.7.1, a vital patch update for both GitLab Self-Managed installations and GitLab.com. This release provides urgent fixes that address functionality and stability concerns discovered after the 18.7 release, ensuring smoother operation across projects and pipelines.

Key Fixes in 18.7.1:

Resolved an issue where job ‘needs’ dependencies containing bridge jobs with rules did not function correctly.
Corrected a problem where expired Prometheus metrics cache caused display errors in the metrics dashboard.
Fixed a specific OpenAPI schema issue related to project access token API response when LDAP is enabled.
Eliminated a regression that affected runners having Windows cache paths with too long file names.

This patch does not introduce new database migrations or feature changes, making it a safe and necessary upgrade for those running GitLab 18.7.0. Organisations that prioritise performance, uptime, and security should apply this patch as soon as possible.

GitLab 18.7.1 Patch Release Resolves Regression Issues

Wed, 07 Jan 2026 01:00:00 +0100

GitLab 18.7.1 Patch Release Now Available

GitLab has announced the immediate availability of version 18.7.1, a patch release addressing two critical regressions introduced in version 18.7.0. These updates ensure improved stability and performance for self-managed GitLab instances. Organisations are strongly encouraged to upgrade to this latest version at their earliest convenience.

Resolved Regressions: GitLab 18.7.1 addresses the following:

CI/CD Variable Handling: Resolved an issue where CI/CD variables could unexpectedly be cleared when performing certain group or project operations. This fix prevents potential configuration loss and ensures your build workflows remain intact. [GitLab issue #444212]
Geo Replication Failures: Fixed inconsistencies introduced in GitLab Geo that caused replication errors in secondary nodes. With 18.7.1, replication stability is restored. [GitLab issue #445143]

Please consult the official GitLab release notes for full technical details and associated merge requests.

Understanding the 2025 OWASP Top 10: Key Changes and Their Impact

Wed, 07 Jan 2026 01:00:00 +0100

The 2025 OWASP Top 10: How Secure Development Is Evolving

The Open Worldwide Application Security Project (OWASP) has announced significant updates in its 2025 Top 10 list — a crucial benchmark for application security best practices used by developers, security teams, and organisations globally. These updates reflect the evolving threat environment and place an even stronger emphasis on a proactive, prevention-focused approach to secure development.

What’s New in the 2025 Edition?

The biggest change comes in the form of better organisation and risk-oriented categorisation. Threats are now grouped into categories that align more closely with business risks rather than isolated technical flaws. This pivot helps teams understand the broader impact of each risk class and prioritise remediation accordingly.

Simplified Vulnerability Triage with GitLab’s Security Analyst Agent

Tue, 06 Jan 2026 01:00:00 +0100

Streamlining Security with the GitLab Security Analyst Agent

Managing vulnerabilities efficiently is a crucial part of any DevSecOps strategy. GitLab’s new Security Analyst Agent is designed to simplify vulnerability triage by integrating directly into your pipeline and daily workflow. With this new feature, security teams can effortlessly track, filter, assign, and escalate vulnerabilities in real-time within GitLab, without the added complexity of context-switching across tools.

This agent intelligently synchronises data to ensure your security team always has up-to-date insights. Vulnerabilities detected by GitLab’s security scanners—such as SAST, DAST, and dependency scanning—are gathered and organised in a central place, enabling faster incident response and tighter collaboration between security and development teams.

Fostering User Trust in Agentic AI Tools: Insights from GitLab

Mon, 05 Jan 2026 01:00:00 +0100

Understanding Trust in Agentic Software

As artificial intelligence becomes more deeply embedded in modern software development workflows, user trust in AI-powered tools has become a critical success factor. At GitLab, we recognise that agentic tools—those that can perform tasks on a user’s behalf—must actively foster trust through thoughtful design choices that prioritise transparency, control, and safety.

The Importance of Transparency

From our user research, transparency surfaced repeatedly as a cornerstone of trust. Developers and DevOps teams want to know what an AI agent is doing, why it is taking an action, and what data it is relying upon. In response, GitLab has been working to ensure that AI-driven features provide clear context for their decisions and outputs. Whether it’s generating code or suggesting project configurations, visibility into the decision-making process is essential.

GitLab 18.7 Release: AI Code Suggestions, Compliance Reporting and More

Thu, 18 Dec 2025 01:00:00 +0100

What’s New in GitLab 18.7: Enhanced Developer Experience and Advanced AI Capabilities

The release of GitLab 18.7 brings a new wave of improvements, focusing on increased productivity, smarter collaboration, and enhanced security. With significant upgrades across AI-powered development, security tools, and platform efficiency, this update supports teams in shipping software faster and more securely.

Code Suggestions Now Generally Available

GitLab 18.7 marks the general availability of code suggestions for SaaS Premium and Ultimate customers. Developers now benefit from improved inline code completions driven by AI, optimising productivity and reducing boilerplate coding. With a focus on user privacy and enterprise-grade control, these suggestions are generated securely within GitLab’s infrastructure.

GitLab 18.7: Advancing AI and Automation with GitLab Duo, CI/CD Innovations, and Enhanced Security

Thu, 18 Dec 2025 01:00:00 +0100

What’s New in GitLab 18.7: Pushing the Boundaries of AI and Automation

The December 2024 release of GitLab 18.7 marks another significant advancement in the DevSecOps platform’s integration of AI and automation, with a sharper focus on productivity, efficiency, and robust security. In this release, GitLab unveils key updates to its AI-powered capabilities to help teams deliver software faster and with greater confidence.

Leading the charge is the GitLab Duo Chat, now entering General Availability. This built-in AI assistant is embedded across multiple stages of the software development lifecycle, offering real-time guidance for writing code, resolving security vulnerabilities, and managing complex tasks—all within the GitLab user interface. Duo Chat leverages context-awareness to ensure better suggestions directly aligned with your project’s current state.

Boosting Higher Education IT Efficiency by Reducing Tool Sprawl

Mon, 15 Dec 2025 01:00:00 +0100

Streamlining IT in Universities: Overcoming Tool Sprawl

As universities continue to accelerate digital transformation, particularly in software development and academic research, managing a complex web of tools has become an increasing challenge. Many higher education institutions find themselves entangled in what is commonly known as tool sprawl — the use of too many disconnected tools across the software lifecycle. This reality not only slows down development but also compounds costs and inefficiencies.

How GitLab Built and Automated its New Japanese Documentation Site

Thu, 11 Dec 2025 01:00:00 +0100

Behind the Scenes: Launching and Automating the Japanese GitLab Docs Site

As GitLab’s global user base continues to grow, ensuring accessible documentation in local languages becomes increasingly important. One of the most recent milestones in this mission is the release of the new Japanese GitLab Docs site—a fully automated, synchronised, and community-supported solution that brings clarity and usability to Japanese-speaking users.

To make this possible, GitLab engineers undertook the challenge of simplifying how translated content is delivered while preserving the meticulous standards of the English documentation. This project isn’t just about language—it’s about process efficiency, technological scalability, and putting user experience front and centre.

Artois University Elevates Curriculum with GitLab Ultimate for Education

Wed, 10 Dec 2025 01:00:00 +0100

Artois University Enhances Education with GitLab Ultimate

Artois University in France has taken a significant step forward in modernising its curriculum by adopting GitLab Ultimate for Education. This strategic move allows students to gain first-hand experience with one of the industry’s leading DevSecOps platforms, nurturing essential skills for the modern software development landscape.

With GitLab’s comprehensive suite, including planning, source code management, CI/CD, and security, students at Artois University benefit from a full DevOps lifecycle in a unified environment. By implementing GitLab across modules focusing on areas like DevOps and Agile methodologies, the university elevates both teaching and learning standards, better preparing students for real-world challenges in software engineering.

Beware of Fake GitLab Job Scams Imitating Official Recruiters

Wed, 10 Dec 2025 01:00:00 +0100

Alert: Rising Wave of Fake Job Scams Misusing GitLab’s Brand

In recent months, there has been a significant increase in fraudulent job offers falsely claiming to be from GitLab or endorsed recruiters. These scams are targeting job seekers across online platforms like LinkedIn and job boards, imitating GitLab’s recruitment process to steal personal data or money. It is important to stay vigilant and informed to avoid falling victim.

Impersonators often use convincing emails, professional-looking offer letters, and even spoofed GitLab logos to gain a victim’s trust. They may push for urgent action or request sensitive data such as passports, bank details, or payment for equipment. GitLab has reported these instances to relevant legal authorities and domain hosts to dismantle phishing domains, but these scams continue to evolve.

GitLab 18.6.2 Patch Release Introduces Crucial Fixes and Improvements

Wed, 10 Dec 2025 01:00:00 +0100

GitLab 18.6.2 Patch Release: Critical Fixes Delivered

GitLab has released version 18.6.2, a vital patch update addressing several issues identified in the earlier 18.6.1 release. This update is highly recommended for all self-managed GitLab instances to ensure security, stability and performance continuity.

The 18.6.2 patch focuses on important bug fixes and improvements. Notably, issues related to Gitaly memory usage were addressed, enhancing repository storage efficiency. This resolves a regression that caused high memory consumption during repository interactions.

Migrating from Azure DevOps to GitLab: A Simplified Future

Wed, 03 Dec 2025 01:00:00 +0100

Seamlessly Migrate from Azure DevOps to GitLab

Many organisations are modernising their software delivery pipelines by moving from Azure DevOps to GitLab – a unified, single platform for the complete DevSecOps lifecycle. This migration trend is driven by GitLab’s focus on reducing complexity, improving developer experience, and enhancing operational efficiency.

Azure DevOps users often face issues related to toolchain fragmentation, complex integrations, and administrative overhead. GitLab addresses these challenges by bringing source code management, continuous integration/continuous delivery (CI/CD), security, and compliance into a single application. This allows teams to collaborate more effectively, automate workflows, and deliver software faster and more securely.

Accelerate Embedded Systems Compliance with GitLab & CodeSonar

Tue, 02 Dec 2025 01:00:00 +0100

Accelerating Embedded Systems Compliance with GitLab and CodeSonar

Ensuring compliance in embedded software development projects has traditionally been a complex task. But the integration of CodeSonar with the GitLab platform offers a new path to streamline these efforts, enabling automation and traceability throughout the software lifecycle.

CodeSonar, a leading static application security testing (SAST) tool from GrammaTech, is designed for detecting critical defects, bugs, and compliance issues in safety-critical software applications. When seamlessly combined with GitLab’s complete DevSecOps platform, teams can continuously analyse code quality and guarantee compliance against standards such as ISO 26262, DO-178C, and MISRA.

Continuously Deploying the Largest GitLab Instance | IDEA GitLab Solutions

Mon, 01 Dec 2025 01:00:00 +0100

How GitLab Continuously Deploys the World’s Largest GitLab Instance

At GitLab, the journey towards robust, reliable, and scalable continuous deployment (CD) for their own platform has culminated in a groundbreaking milestone: the ability to continuously deploy the largest GitLab instance in the world. This comprehensive transformation is not just a tale of technological evolution but a blueprint for DevOps best practices at scale.

GitLab.com, the SaaS offering used by millions of users globally, now benefits from a strategy that enables multiple production deployments per day, without compromising quality, stability, or user experience. This transition demonstrates the effective use of GitLab’s own tools to manage code, pipelines, infrastructure, and testing with precision.

GitLab 18.6.1 Patch Release: Critical Fixes and Improvements

Wed, 26 Nov 2025 01:00:00 +0100

Patch Release: GitLab 18.6.1 Now Available

GitLab 18.6.1 has been officially released, addressing a series of critical issues in the 18.6 release. This patch ensures users can continue working efficiently and securely with the GitLab platform.

The update resolves regression errors that appeared after the initial 18.6 rollout. Notably, this includes prevention of application crashes and improves authentication and configuration flows, particularly around GitLab Pages on instances without Let’s Encrypt configured. Additionally, there are fixes for WebAuthn-based authentication issues and a Grafana setup misconfiguration affecting some users.

Celebrating the 2025 EMEA GitLab Partner Award Winners

Mon, 24 Nov 2025 01:00:00 +0100

Recognising Excellence: GitLab’s 2025 EMEA Partner Award Winners

Each year, GitLab celebrates its top-performing partners across the EMEA region, who demonstrate excellence in DevOps innovation, client impact, and collaborative partnership. The 2025 EMEA GitLab Partner Awards reflect the commitment of these organisations to not only adopt but also maximise the value of the GitLab DevSecOps platform for their clients.

This year’s winners embody the spirit of transformation, guiding companies through their DevOps journeys, streamlining development lifecycles, and ensuring robust security and compliance. GitLab partners are key to driving growth, enabling digital transformation, and delivering true business agility.

GitLab Discovers Widespread npm Supply Chain Attack

Mon, 24 Nov 2025 01:00:00 +0100

GitLab Uncovers Major npm Supply Chain Threat

In a recent development, the GitLab Threat Insights Team has identified a substantial and ongoing supply chain attack targeting the JavaScript and Node.js ecosystem via the npm package manager. This newly uncovered operation involves thousands of malicious packages that seem automated and are designed to exfiltrate sensitive environment data such as tokens, credentials, and configuration files.

This discovery underscores how open-source ecosystems continue to be high-value targets for attackers. Upon further investigation, the GitLab team discovered obfuscated scripts and base64-encoded payloads within package installation routines — potentially allowing attackers to harvest credentials from affected systems silently and persistently.

GitLab 18.6 Release Highlights – From Configuration to Full Control

Thu, 20 Nov 2025 01:00:00 +0100

From Configuration to Control: What’s New in GitLab 18.6

GitLab 18.6 offers a range of updates focused on enhancing control, operability, and continuous security across your software development lifecycle. Whether you’re configuring complex CI/CD pipelines or managing enterprise-scale access, this release delivers new tools to streamline your DevSecOps journey.

Simplified Inheritance Controls

Nested groups just got easier to handle. With the new functionality that allows you to disable group inheritance, it’s now possible to simplify permissions management. This is immensely useful when adhering to stricter security or compliance standards.

GitLab 18.6: Enhanced Merge Request Reviews, Dependency Management & AI Capabilities

Thu, 20 Nov 2025 01:00:00 +0100

New in GitLab 18.6: Transforming Developer Efficiency and DevSecOps with Smart Enhancements

GitLab 18.6 has arrived, bringing powerful improvements across code collaboration, dependency management, and AI-powered productivity. These updates continue GitLab’s mission to streamline the DevSecOps lifecycle and empower development teams globally.

Enhanced Merge Request Review Experience

With 18.6, GitLab refines the merge request workflow with clearer visuals and context through a modernised review sidebar. Review large MR diffs more efficiently with indicators grouped by comment type, markdown file support, and external tool integration. GitLab Duo’s experimental AI-generated summaries and test plans also now support Markdown files, improving MR understanding significantly.

How AI Transformed a GitLab Engineer’s Onboarding Experience

Mon, 17 Nov 2025 01:00:00 +0100

Revolutionising GitLab Onboarding with AI: A New Engineer’s Journey

Starting a new role can feel like stepping into a whirlwind—especially at a fast-paced, all-remote company like GitLab. But what if onboarding could be smoother, smarter, and faster? That’s exactly what one new engineer at GitLab achieved by leveraging artificial intelligence (AI) tools to turbocharge their early days on the job.

In a compelling vignette shared by GitLab, a newly onboarded engineer details how they used GitLab’s own AI assistant and other AI-driven features to boost their productivity from day one. Navigating documentation, understanding complex codebases, and resolving issues became significantly more efficient with AI acting as a mentor and co-pilot.

What’s New in Git 2.52

Mon, 17 Nov 2025 01:00:00 +0100

Git 2.52 Released: Smarter, Faster, and More Secure

The release of Git 2.52 brings a series of enhancements that offer a smarter, faster, and more secure version control experience. Developers using Git across the globe will appreciate the increased performance, the quality-of-life improvements, and more comprehensive command behaviours that build on the robustness of the CLI tool.

Configurable Hooks and New Defaults

With version 2.52, Git introduces an easier mechanism to configure its built-in hook templates. This makes managing and sharing team-wide Git hooks more efficient. A new configuration option, core.hooksPath, allows clearer use of alternate paths, enhancing automation and security.

GitLab 18.5.2 Patch Release Now Available

Wed, 12 Nov 2025 01:00:00 +0100

GitLab 18.5.2 Patch Release Now Available

We’re pleased to announce the immediate availability of GitLab 18.5.2, the latest patch release in the 18.5 series. This release addresses a range of critical bug fixes and performance improvements, ensuring your GitLab environment stays secure and stable. As always, we recommend that all customers running 18.5.0 or later update to GitLab 18.5.2 as soon as possible.

Included in this version are important fixes for issues affecting merge request filtering, pipeline execution behaviour, and UI regressions. In particular, an error in filtering merge requests by label has now been corrected, improving usability and project navigation for teams. Additionally, performance optimisations have been introduced in the background job processing for continuous integration (CI), ensuring smoother operations for high-demand environments.

Reach CMMC Level 2 Faster with GitLab Dedicated for Government

Wed, 12 Nov 2025 01:00:00 +0100

Accelerate Your Path to CMMC Level 2 with GitLab Dedicated for Government

As cybersecurity standards tighten across government agencies and defence contractors, achieving Cybersecurity Maturity Model Certification (CMMC) Level 2 has become a top priority. GitLab’s new Dedicated for Government solution is designed to help federal agencies, system integrators, and defence contractors meet these rigorous compliance standards faster and more efficiently.

Built with robust security and compliance features, GitLab Dedicated for Government aligns with the standards required under FedRAMP Moderate and impact level 4 requirements. It provides organisations with isolated, single-tenant cloud environments hosting GitLab’s full DevSecOps capabilities. These environments offer data residency within the U.S., strong access controls, and advanced data protection safeguards—making it easier to manage sensitive workflows within regulated spaces.

Secure AI Agent Deployment to GKE Using GitLab CI/CD

Mon, 10 Nov 2025 01:00:00 +0100

Securely Deploying AI Agents to GKE with GitLab

As AI-driven applications continue to soar, deploying intelligent agents efficiently and securely becomes paramount. GitLab provides a complete DevSecOps approach to streamline deployment pipelines for AI agents across Kubernetes environments, particularly with Google Kubernetes Engine (GKE).

In a recent technical showcase, GitLab demonstrated how to securely deploy a Retrieval-Augmented Generation (RAG) chatbot agent on GKE. This use case not only highlighted GitLab’s powerful CI/CD capabilities, but also reinforced key security practices, such as secret management and infrastructure-as-code (IaC) for resource automation.

Secure Your GitLab Pipelines: Switch from Variables to Inputs

Tue, 04 Nov 2025 01:00:00 +0100

Enhance Security by Migrating from Pipeline Variables to Pipeline Inputs

GitLab is continuously evolving to provide secure and efficient DevSecOps workflows. One of the latest improvements encourages users to move from using pipeline variables to pipeline inputs, offering better control and reducing risk during execution.

Pipeline variables have traditionally offered flexibility, but they can introduce potential security vulnerabilities and make pipeline runs harder to audit. With pipeline inputs, developers gain safer interaction with CI/CD processes by explicitly defining expected input values and enforcing types directly in .gitlab-ci.yml.

GitLab Duo Deprecates Claude Sonnet 3.7: What You Need to Know

Fri, 31 Oct 2025 01:00:00 +0100

Deprecation Notice for Claude Sonnet 3.7 in GitLab Duo

GitLab has announced the deprecation of Claude Sonnet 3.7 from its GitLab Duo Chat functionality, effective 31 October 2024. This change comes as Anthropic, the developers of Claude, transition to newer models with superior capabilities. GitLab will automatically replace Claude 3.7 with the new Claude model seamlessly, ensuring continued service for users without disruption.

The updated Claude model delivers improved performance across code completion, natural language understanding, and conversation consistency. GitLab Duo users can expect smoother interactions and more intelligent support within their DevSecOps workflows.

What is YAML? A Beginner-Friendly Format for Configurations and Pipelines

Fri, 31 Oct 2025 01:00:00 +0100

Understanding YAML: A Human-Friendly Data Format

YAML, short for “YAML Ain’t Markup Language,” is a concise, human-readable data serialisation standard commonly used for configuration files and data exchange between languages with different data structures. Designed to be simple and intuitive, YAML aligns closely with most modern programming languages, making it an ideal choice for managing configuration in DevOps workflows, including CI/CD pipelines in GitLab.

Unlike other data formats like JSON or XML, YAML prioritises readability without unnecessary syntax noise. It uses indentation to represent hierarchy, eliminating the need for brackets or commas. This makes YAML not only easier to read but also less prone to syntax errors, especially when manually edited.

Plan in GitLab Without Losing Context: A Unified Approach to Software Strategy

Tue, 28 Oct 2025 01:00:00 +0100

Master Strategic Planning in GitLab – With Zero Context Switching

Modern software development demands efficiency, clarity, and flexibility—especially during the planning phase. GitLab’s latest enhancements now help teams stay in flow by streamlining strategic planning within the same platform, eliminating the need to jump across tools and tabs.

How often do you find yourself switching from spreadsheets to whiteboards to planning apps, losing context and momentum each time? GitLab removes these disruptions with built-in tools that keep your team coordinated in one place. Define OKRs (Objectives and Key Results), plan roadmaps, track epics, and align delivery—all without leaving the platform.

GitLab 18.5.1 Patch Release: Key Bug Fixes and Security Enhancements

Wed, 22 Oct 2025 02:00:00 +0200

GitLab 18.5.1 Patch Release Now Available

GitLab has just released version 18.5.1, a critical security patch focusing on bug fixes to enhance stability for users of the 18.5 series. This update addresses key regressions and performance issues introduced in earlier iterations, reaffirming GitLab’s commitment to secure and reliable DevSecOps tooling.

In particular, this release resolves:

A regression that prevented the display of pipeline stages in some merge requests
A bug impacting audit event streaming to external destinations
A performance issue linked to CI/CD pipeline creation under specific configurations

For organisations using GitLab self-managed or GitLab SaaS, it’s highly recommended to upgrade to 18.5.1 as soon as feasible in order to benefit from these critical fixes and prevent potential disruptions.

Modernise Java Applications Quickly with GitLab Duo and Amazon Q

Wed, 22 Oct 2025 02:00:00 +0200

Accelerate Java App Modernisation with GitLab Duo and Amazon Q

Modernising legacy Java applications is often a complex and time-consuming task, especially for development teams facing tight deadlines and limited resources. GitLab Duo, in collaboration with Amazon Q, now streamlines this process by introducing enhanced AI-driven capabilities to help software teams update and refactor outdated Java applications with greater speed and precision.

Amazon Q is a generative AI-powered assistant that enables developers to better understand legacy code, identify dependencies, and receive real-time suggestions. When paired with GitLab Duo’s end-to-end DevSecOps platform, this solution dramatically reduces the friction associated with application modernisation. Development teams can now analyse, plan, and implement changes directly within the GitLab environment, ensuring security and compliance are upheld throughout the software development lifecycle.

GitLab 18.5: Elevating Software Development with Smarter DevSecOps Intelligence

Tue, 21 Oct 2025 02:00:00 +0200

GitLab 18.5: Intelligence Advancing Your Development Lifecycle

As the pace of innovation accelerates, GitLab 18.5 introduces a smarter, more connected way to build, secure, and deliver software. This latest release brings deeper AI-driven insights, tighter integration of security, and performance-focused improvements to empower engineering teams worldwide.

Smarter with GitLab Duo

GitLab Duo, the integrated AI suite, continues to evolve with this update. Developers and security professionals alike benefit from enhanced vulnerability explanations, faster code reviews using AI summarisation, and improved suggested fixes to boost code quality and team velocity.

GitLab Advanced SAST: Smarter, Faster Security Testing for Modern DevSecOps

Tue, 21 Oct 2025 02:00:00 +0200

Introducing Advanced SAST: Faster and Smarter Static Application Security Testing

GitLab continues to enhance the software development lifecycle with the introduction of Advanced SAST, a major upgrade to static application security testing that delivers greater performance, accuracy, and security insights. With Advanced SAST, development teams benefit from significantly faster scan times and more precise vulnerability detection, helping them shift security left more effectively.

Powered by a modern architecture and GitLab Secure scanners rewritten in Go and Rust, Advanced SAST achieves a performance boost of up to 80% compared to traditional scanners. This optimised design supports real-time feedback and better aligns with agile and DevSecOps workflows. Security scanning no longer bottlenecks development, enabling teams to focus on rapid innovation without sacrificing safety.

Claude Haiku 4.5 Now Integrated with GitLab Duo Agentic Chat

Mon, 20 Oct 2025 02:00:00 +0200

Claude Haiku 4.5 Now Integrated with GitLab Duo Agentic Chat

We’re excited to announce that GitLab Duo, GitLab’s intelligent AI-powered assistant, now includes support for Claude Haiku version 4.5 by Anthropic. This advancement empowers developers and teams to benefit from improved conversational AI capabilities within the GitLab environment.

Claude Haiku 4.5 is optimised for speed, efficiency, and natural language understanding, making it an ideal complement to GitLab Duo’s agentic chat experience. By acting as an intelligent collaborator, Claude can understand project context, offer accurate code suggestions, and help automate routine development and troubleshooting tasks—all within your GitLab workspace.

Effortless Variable and Artifact Sharing in GitLab Parent-Child Pipelines

Thu, 16 Oct 2025 02:00:00 +0200

Managing complex DevOps workflows often requires seamless communication between multiple pipeline components. GitLab’s recent updates to parent-child pipelines, introduced in version 16.11, significantly simplify this process, enabling effortless variable and artifact sharing that boosts pipeline modularity and reusability.

Simplified Variable Propagation

Previously, developers needed to use the trigger:forward:variables setting to share variables with a child pipeline. With the new implementation, variables defined in the parent pipeline are now passed automatically unless explicitly restricted, reducing configuration overhead and human error. This creates a more predictable and intuitive experience for managing dynamic pipeline data.

GitLab 18.5 Released: Better Secret Detection, AI-Powered CLI and Merge Train Enhancements

Thu, 16 Oct 2025 02:00:00 +0200

What’s New in GitLab 18.5: Enhanced Security and Developer Experience

GitLab 18.5 is here and it brings a host of exciting updates that cater to both DevOps teams and enterprise businesses. Whether you’re managing complex deployments or securing your software supply chain, this release delivers powerful new features to supercharge your workflows.

Introducing Scan Execution Policies for Secret Detection

Security remains a top priority in GitLab 18.5. You can now enforce scan execution policies for Secret Detection, ensuring that this critical check runs consistently across your projects. This enterprise-grade capability gives security teams peace of mind by embedding rules directly into compliance frameworks for better governance.

Structured Streamlit Application Framework in Snowflake

Fri, 10 Oct 2025 02:00:00 +0200

Developing a Structured Streamlit Application Framework in Snowflake

Building scalable data applications can be challenging. At GitLab, our Data Science team recently took on the task of creating a structured framework leveraging Streamlit within Snowflake, designed to streamline development and improve user experience. Here’s how we approached it and what we learned along the way.

Why Streamlit and Snowflake?

Streamlit is known for its simplicity in building web apps for data science and machine learning projects. Snowflake, on the other hand, offers a powerful platform for cloud data management. Combining the two enables data teams to deliver robust applications directly inside the data warehouse, enhancing scalability, governance, and performance.

GitLab 18.4.2 Patch Release Strengthens Security and Reliability

Wed, 08 Oct 2025 02:00:00 +0200

GitLab 18.4.2 Patch Release Now Available

GitLab has released version 18.4.2 as a security-focused patch addressing key issues discovered in the 18.4 series. This incremental update is strongly recommended for all installations currently running 18.4 to ensure optimal system security and reliability.

Main improvements include:

Critical Security Fixes: Several vulnerabilities have been addressed. These updates reflect GitLab’s ongoing commitment to secure DevSecOps operations across the globe.
Performance and Stability Enhancements: This release provides optimisations that ensure smoother performance and improved reliability within your CI/CD pipelines and version control workflows.

As always, IDEA GitLab Solutions stands ready to support your upgrade journey. With professional consulting, customised onboarding, and certified GitLab licences, our teams across the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, North Macedonia, the United Kingdom and remote experts in Israel, South Africa, and Paraguay are here to help your organisation get the most out of GitLab.

Optimise GitLab Object Storage for Scale and Performance

Wed, 08 Oct 2025 02:00:00 +0200

Streamline GitLab Object Storage for Growth and Efficiency

As your DevOps operations scale, efficient management of data storage becomes paramount. GitLab has recently introduced updated guidance and best practices to optimise object storage—whether you’re self-managing or operating at enterprise level. These insights are crucial for reducing storage-related bottlenecks and maintaining consistent performance.

GitLab uses object storage to house various forms of binary data including LFS files, CI/CD artefacts, uploads, and more. By employing object storage (e.g., AWS S3, Google Cloud Storage), GitLab instances gain scalability and increased reliability over traditional file systems for these assets.

Streamline Enterprise Artifact Management with GitLab

Wed, 08 Oct 2025 02:00:00 +0200

Enhancing Enterprise-Level Artifact Management With GitLab

Managing software artifacts at scale can be a complex challenge for enterprise teams. GitLab now offers a comprehensive solution that centralises and simplifies this process through its native package and container registries.

Out-of-the-box, GitLab supports various package formats including Maven, npm, PyPI, RubyGems, Conan, NuGet, and generic packages. With its built-in Package Registry, teams can store and share build artifacts and dependencies seamlessly within their CI/CD pipelines — all while benefiting from native integration and a single source of truth.

GitLab Supports Flexible Deployment as Atlassian Ends Data Center Offering

Tue, 07 Oct 2025 02:00:00 +0200

Atlassian Phases Out Data Center: GitLab Stands by Flexible Deployment Options

Atlassian recently announced the upcoming end of support for its Data Center offerings, a move that has raised concerns among many self-managed enterprise customers. Users relying on traditional, on-premise deployments now face a critical moment of reconsidering their DevOps and software development platforms. In contrast, GitLab remains steadfast in its commitment to deployment flexibility, offering organisations the ability to choose between fully cloud-hosted, self-managed, or hybrid models.

How GitLab Revolutionises Embedded Systems Testing

Thu, 02 Oct 2025 02:00:00 +0200

Streamlining Embedded Systems Testing with GitLab

Embedded systems are everywhere—from industrial automation to consumer electronics—and ensuring their quality through rigorous testing is critical. Traditionally, testing cycles for embedded software have been cumbersome and lengthier due to hardware dependencies, manual processes, and fragmented toolchains. GitLab is transforming this paradigm by offering an integrated and efficient DevSecOps platform tailored for embedded software development.

With GitLab, teams can automate testing processes, streamline collaboration, and reduce time-to-market by integrating source control, continuous integration (CI), and security scanning into a single solution. By utilising GitLab’s unified interface, teams working on embedded systems can coordinate hardware-in-the-loop (HIL) testing, manage diverse toolsets, and track changes seamlessly.

GitLab Duo Expands with Claude 3.5 Sonnet for Smarter AI Flexibility

Mon, 29 Sep 2025 02:00:00 +0200

Expanded AI Options in GitLab Duo: Claude 3.5 Sonnet Now Available

GitLab continues its mission to provide greater AI flexibility to DevSecOps professionals by integrating Anthropic’s Claude 3.5 Sonnet into GitLab Duo. This latest addition enhances the AI model lineup alongside existing support for Google Cloud’s Gemini 1.5 Pro and OpenAI GPT-4. GitLab Ultimate and Premium SaaS users can now freely toggle between these models at both the admin and personal user levels to best suit their project needs.

GitLab Duo: A Smarter AI-Powered DevSecOps with Multi-Agent and MCP

Fri, 26 Sep 2025 02:00:00 +0200

Introducing GitLab Duo: A Multi-Agent AI Platform Powered by the Model Control Plane

GitLab continues to pioneer the future of DevSecOps with the introduction of GitLab Duo, an innovative multi-agent platform enhanced by the power of GitLab’s Model Control Plane (MCP). Designed to offer intelligent, streamlined, and secure development workflows, GitLab Duo brings together a suite of AI agents specialised across development stages—such as planning, documentation, code generation, testing, and security.

Mastering Agentic AI: Essential Guides and Tools from GitLab

Fri, 26 Sep 2025 02:00:00 +0200

Empowering the Future of Software with Agentic AI

GitLab continues to support the AI engineering evolution with a curated set of resources focused on Agentic AI. These smart, goal-driven AI agents automate and orchestrate tasks across complex workflows—fundamentally changing how software is built, tested, and delivered.

Whether you’re an engineer, team lead, or innovator looking to harness the power of autonomous AI systems, these guides and tools provide a thoughtful starting point:

GitLab 18.4.1 Patch Release Now Available – Boosts Stability and Fixes Key Bugs

Thu, 25 Sep 2025 02:00:00 +0200

GitLab 18.4.1 Patch Release Improves Reliability and Addresses Issues

GitLab has released version 18.4.1, a critical patch addressing several issues discovered in the recent 18.4 release. This update brings increased stability and fixes to components that affect both self-managed and GitLab.com-hosted installations.

The highlight of this patch includes:

Job Progress Feedback: An improvement that stops GitLab Runner jobs from getting stuck when using the needs keyword. This ensures your CI/CD pipelines continue smoothly without unnecessary blockages.
SAML Redirect Corrected: A bug affecting Identity Provider-initiated SAML sign-ins that caused redirect loops is now resolved, contributing to more secure and predictable authentication flows.
Database Migration Rollback: GitLab addressed a bug in the database schema migration rollback process that previously could lead to inconsistencies during upgrades or instance recovery efforts.

All users on version 18.4.0 are strongly advised to upgrade to 18.4.1 immediately to benefit from these fixes. Instructions and upgrade recommendations can always be found in the GitLab upgrade documentation.

GitLab Recognised as a Leader in the 2025 Gartner® Magic Quadrant™ for DevOps Platforms

Thu, 25 Sep 2025 02:00:00 +0200

GitLab Recognised as a Leader: 2025 Gartner® Magic Quadrant™ for DevOps Platforms

We are proud to share that GitLab has been named a Leader in the 2025 Gartner® Magic Quadrant™ for DevOps Platforms. This recognition celebrates GitLab’s ongoing commitment to delivering an advanced, AI-powered DevSecOps platform that enables faster and more secure software development.

According to Gartner, GitLab distinguishes itself through its comprehensive vision and unparalleled ability to execute, offering a unified DevSecOps experience in a single platform. This unique approach eliminates the need for multiple tools while improving collaboration, flexibility, and visibility across teams and workflows. GitLab’s single application brings together planning, creation, verification, security, deployment, and monitoring, all while continuously innovating with AI-driven capabilities that support faster decision-making and streamlined development pipelines.

GitLab 18.4 Brings Smarter Automation, Streamlined Security, and AI-Native Development

Tue, 23 Sep 2025 02:00:00 +0200

GitLab 18.4: Advancing AI-Native Development with Smarter Automation and Insight

The latest GitLab 18.4 release represents a major step forward in aligning software development with AI-native methodologies. By enhancing automation, insights, and DevSecOps workflows, GitLab enables teams to build faster, deploy safer, and innovate with fewer manual touchpoints.

Effortless Coding with Code Suggestions Enhancements
The AI-powered code suggestions tool now supports comments and refactors for entire files, increasing developer productivity with fewer interruptions. This facilitates a cleaner, more intuitive development process by offering relevant revisions and structural improvements across complex codebases.

GitLab 18.4 Released: New Features for Secure, Streamlined Development

Thu, 18 Sep 2025 02:00:00 +0200

What’s New in GitLab 18.4: Enhanced Policy Management, Improved Development Flows, and More

The latest GitLab 18.4 release brings a suite of exciting enhancements, designed to streamline policy enforcement, strengthen code security, and improve overall development workflows. Teams across the UK, Central and Eastern Europe, and international remote offices—including those using IDEA GitLab Solutions for licensing and expert consulting—can benefit from GitLab’s latest features.

Scan Result Policies Simplified

With GitLab 18.4, users gain more flexibility and clarity when defining merge request requirements related to security and compliance scans. The updated Scan Result Policies remove the need for complex fallback logic when setting enforcement levels on detections—making compliance more transparent and easier to manage.

A Comprehensive Guide to GitLab Dynamic Application Security Testing (DAST)

Wed, 17 Sep 2025 02:00:00 +0200

Strengthening Web Application Security with GitLab DAST

Dynamic Application Security Testing (DAST) is an essential part of any comprehensive security strategy. Offered as an integrated feature in GitLab, DAST allows development teams to scan live web applications and APIs for vulnerabilities without accessing the source code.

What is GitLab DAST?

DAST is a black-box security testing method that simulates external attacks on your application in its runtime environment. By behaving like a real attacker, GitLab DAST uncovers security issues such as cross-site scripting (XSS), SQL injection, and other OWASP Top 10 vulnerabilities.

GitLab Recognised as a Leader in the 2025 Gartner Magic Quadrant for AI Code Assistants

Wed, 17 Sep 2025 02:00:00 +0200

GitLab Recognised as a Leader in AI Code Assistants by Gartner

GitLab has once again affirmed its standing in the DevSecOps landscape by being named a Leader in the 2025 Gartner Magic Quadrant for AI Code Assistants. This recognition positions GitLab among the top solutions delivering generative AI capabilities that accelerate and enhance software development workflows across the entire DevSecOps lifecycle.

The evaluation focused on GitLab Duo, GitLab’s AI-powered development suite offering real-time code suggestions, test generation, vulnerability detection, and more—all seamlessly integrated within the same DevSecOps platform.

Revolutionising DataOps with the GitLab Duo Agent Platform

Tue, 16 Sep 2025 02:00:00 +0200

Transforming DataOps with GitLab Duo Agent Platform

In today’s tech-driven world, delivering intelligent applications backed by real-time data insights is no longer optional — it’s critical. As organisations strive to streamline AI and ML integration into their workflows, GitLab Duo Agent Platform emerges as a game-changer for DataOps, bridging the gap between data, DevOps, and AI.

What is the GitLab Duo Agent Platform?

The GitLab Duo Agent Platform is an AI-native extension to the GitLab CI/CD framework, designed to bring automation, observability, and compliance into the heart of AI and ML model development. It enhances the developer experience through intelligent agents that work seamlessly with your existing GitLab ecosystem, enabling hands-free task orchestration, compliance checks, and automated pipeline management.

GitLab and Accenture Announce Global Reseller Partnership

Mon, 15 Sep 2025 02:00:00 +0200

GitLab and Accenture Forge Strategic Global Reseller Alliance

GitLab, a leading DevSecOps platform, has announced a strategic global reseller agreement with Accenture, a prominent professional services company with extensive expertise in digital, cloud, and security solutions. This collaboration is poised to significantly advance enterprise software delivery capabilities around the world.

The alliance means Accenture will now act as an authorised reseller of GitLab’s comprehensive DevSecOps Platform, enabling organisations to integrate DevOps seamlessly into their business processes. This is expected to streamline software development, enhance security, and support faster innovation cycles.

How GitLab Supercharged CI Status Updates with WebSockets

Mon, 15 Sep 2025 02:00:00 +0200

Real-Time CI/CD Pipeline Feedback with WebSockets

Continuous Integration (CI) feedback is now more instant than ever on GitLab thanks to the implementation of WebSocket technology. Previously, pipeline statuses relied on periodic polling for updates, creating minor yet noticeable delays in status notification. Now, users get real-time status updates directly within the user interface, delivering a smoother development experience and immediate visibility into CI/CD progress.

This enhancement eliminates the need for repetitive data fetching and significantly reduces page refreshes. Instead of the front-end sending status update requests to the server every few seconds, the server efficiently pushes changes to the client through a persistent WebSocket connection. As a result, developers and teams benefit from more responsive feedback loops, especially critical in fast-paced collaborative environments.

GitLab 18.3.2 Patch Release: Important Fixes and Security Enhancements

Wed, 10 Sep 2025 02:00:00 +0200

GitLab 18.3.2 Patch Release: A Focus on Stability and Security

We’re pleased to share the latest patch release for GitLab — GitLab 18.3.2 — which includes crucial bug fixes and a security update that enhances the platform’s stability for both self-managed and GitLab.com users.

This release addresses a regression fixed in runner upgrade check (issue #462792), restoring expected behaviour when verifying runner compatibility during version upgrades. Teams using continuous integration pipelines can benefit from improved reliability and seamless upgrade experiences.

Supercharge Git Workflows with GitLab’s Enhanced Features

Wed, 10 Sep 2025 02:00:00 +0200

Enhance Your Git Workflows with GitLab’s Powerful Features

Managing your development workflow efficiently is crucial for delivering high-quality software at speed. GitLab now introduces enhanced capabilities to simplify how you work with Git, supercharging your productivity while improving collaboration and security.

What’s New in GitLab’s Git Workflows

GitLab brings an improved experience by offering a more intuitive way to interact with Git branches and repositories through the GitLab UI. Whether you’re a developer crafting new features or a DevOps engineer maintaining CI/CD pipelines, GitLab’s streamlined tools help you focus more on code and less on infrastructure setup.

A Developer’s Guide to Building Secure Retail Applications with GitLab

Thu, 04 Sep 2025 02:00:00 +0200

Top Strategies for Building Secure Retail Apps with GitLab

Retail applications handle sensitive customer information and financial transactions, making their security a top priority. GitLab offers a reliable and integrated DevSecOps platform that helps developers prioritise security without compromising speed. By unifying development, security, and operations, GitLab ensures that your retail software is built with security at its core—automatically and continuously.

Applying DevSecOps from the Start

GitLab encourages security integration from the very beginning of the software development lifecycle. Developers can employ tools for static and dynamic code analysis, dependency scanning, and vulnerability management directly within the GitLab pipeline. This proactive approach identifies risks early and mitigates potential threats before production.

A Developer’s Guide to Building Secure Retail Apps with GitLab

Thu, 04 Sep 2025 02:00:00 +0200

Developing Secure Retail Applications with GitLab

In today’s fast-paced digital market, security and efficiency are non-negotiable in retail application development. GitLab provides developers with an integrated platform to deliver secure, scalable retail software from planning to deployment—all while maintaining robust security practices throughout the development lifecycle.

Retail apps handle sensitive data—from customer payment information to transaction histories. GitLab’s DevSecOps approach helps bake security directly into every stage of your pipeline. With built-in tools for vulnerability scanning, dependency management, code quality checks and automated compliance, your team can detect and resolve issues early before they reach production.

Revolutionise Development with GitLab Duo Agent’s Issue to MR Flow

Wed, 03 Sep 2025 02:00:00 +0200

Boost Developer Productivity with GitLab Duo’s AI-Powered Issue-to-Merge Request Flow

GitLab continues to push the boundaries of AI-assisted development with the introduction of a fully integrated issue-to-merge request (MR) workflow, powered by GitLab Duo. This exciting evolution combines the strength of GitLab’s single DevSecOps platform with AI-powered automation, accelerating code delivery and reducing developer toil.

With the new GitLab Duo Agent Platform, developers can now interact with AI through a natural and intuitive flow that spans from issue creation to MR generation. By analysing project context and goals, Duo can generate a proposed implementation solution directly from an issue, helping teams kick-start development with clarity and momentum.

GitLab Achieves ISO/IEC 42001 Certification for Responsible AI Governance

Tue, 02 Sep 2025 02:00:00 +0200

GitLab Joins the Leaders in Ethical AI by Securing ISO/IEC 42001 Certification

In a landmark achievement, GitLab has become one of the first organisations worldwide to receive the ISO/IEC 42001 certification, underscoring its commitment to responsible artificial intelligence (AI) governance. This newly released international standard offers organisations a framework to manage and govern AI systems in an ethical and transparent manner.

GitLab, known for its holistic DevSecOps platform, successfully met the stringent criteria of ISO/IEC 42001, which focuses on establishing, implementing, maintaining, and continually improving an AI Management System. This certification solidifies GitLab’s role as a leader not only in developer platforms but also in the responsible development and deployment of machine learning and AI technologies.

Secure Rust Development with GitLab CI/CD | IDEA GitLab Solutions

Tue, 02 Sep 2025 02:00:00 +0200

Secure Rust Development with GitLab: A Modern Approach

Rust continues to rise in popularity thanks to its memory safety, performance, and reliability. At GitLab, we are bringing even more power to Rust developers by integrating advanced security and compliance tools directly into your CI/CD workflows. Whether you’re building safe systems software or scalable web applications, secure development with Rust is now simpler and more robust than ever.

GitLab’s native support for Rust allows developers to continuously scan for vulnerabilities and ensure compliance as part of the software development life cycle. Using GitLab Ultimate, Rust teams benefit from Static Application Security Testing (SAST), Software Composition Analysis (SCA), licensing checks, and seamless DevSecOps practices that don’t interrupt your development flow.

Why Enterprise Independence Now Matters in DevSecOps More Than Ever

Tue, 02 Sep 2025 02:00:00 +0200

Enterprise Independence: A New Imperative in DevSecOps

As digital transformation accelerates, development, security, and operations teams are under pressure to deliver faster, safer software. In this rapidly evolving landscape, enterprise independence – the ability to choose and control your tools and infrastructure – has never been more vital. With the rising risks of vendor lock-in, supply chain vulnerabilities, and ever-tightening budgets, organisations across Europe and beyond are reevaluating their DevSecOps strategies.

GitLab 18.3.1 Patch Brings Critical Fixes for Improved Platform Stability

Wed, 27 Aug 2025 02:00:00 +0200

GitLab 18.3.1 Patch Release Now Available

GitLab has just released the 18.3.1 patch, designed to resolve several edge-case issues affecting performance and reliability. This release is part of GitLab’s commitment to delivering a secure, stable, and dependable DevSecOps platform you can trust for mission-critical development operations.

This update addresses bugs impacting specific self-managed and SaaS environments, such as migration errors in bulk_import_exports and a problem with users being removed from groups via SAML sync—both of which are now fixed. A validation issue that occurred when created_at was passed as a string has also been resolved.

GitLab 18.3.1 Patch Released – Important Security and Stability Fixes

Wed, 27 Aug 2025 02:00:00 +0200

GitLab 18.3.1 Patch Release Now Available

GitLab 18.3.1 is now available, addressing critical issues in the 18.3 series to improve overall stability and performance. This patch resolves key regressions and vulnerabilities to ensure your DevSecOps pipelines stay secure and reliable.

Notably, this release fixes a regression that broke branch protection settings when approval rules were applied and resolves an issue where masked variables could be revealed in certain security scan reports. These updates reinforce GitLab’s commitment to security and operational excellence.

Fine-Grained Job Tokens Now Available for Secure and Scoped CI/CD

Tue, 26 Aug 2025 02:00:00 +0200

Fine-Grained Job Tokens Now Generally Available

We’re thrilled to announce the general availability of Fine-Grained Job Tokens in GitLab, a major step forward in securing and streamlining CI/CD pipelines. This powerful feature enables pipeline jobs to authenticate to the GitLab API and GitLab packages with stricter permission boundaries, limiting token access only to specific scopes and resources.

Previously, Job Tokens offered fewer customisation capabilities, often exposing more access than necessary—an issue particularly concerning when dealing with cross-project pipelines. Fine-Grained Job Tokens resolve this by allowing project maintainers to explicitly define token permissions per project, service, or API access level. The result? Improved security, stronger compliance, and fewer risks across DevOps workflows.

Custom Admin Roles Now Generally Available in GitLab

Mon, 25 Aug 2025 02:00:00 +0200

Custom Admin Roles Now Generally Available in GitLab

GitLab has officially announced the general availability of Custom Admin Roles, empowering organisations to define and assign admin privileges with greater specificity and control. This enhancement addresses a common need among enterprise users: the ability to delegate responsibilities without over-permissioning team members.

Previously, GitLab Administrators had unrestricted access, which could be problematic in environments requiring nuanced access controls. With Custom Admin Roles, developers and DevOps teams can now assign limited administrative duties to individuals based on their operational area and authority level. Whether it’s managing users, overseeing group-level configurations, or handling billing responsibilities, organisations can now tailor permissions precisely.

Discover What's New in GitLab 18.3 – Release Overview

Thu, 21 Aug 2025 02:00:00 +0200

GitLab 18.3 Released: Enhanced Visibility, Compliance and Security at Scale

The latest version of GitLab, 18.3, has arrived — bringing powerful capabilities across visibility, governance, and productivity for DevSecOps teams. These enhancements are designed to support organisations developing software at scale, including regulated industries with complex compliance and security requirements.

Streamlined Compliance and Enhanced Visibility

GitLab 18.3 introduces a Compliance Dashboard for group owners, which aggregates all compliance violations in a single view. This feature accelerates audits and helps ensure consistent development practices. Additionally, a new Push Rules Violations Report is available across Premium and Ultimate tiers, helping teams enforce branch protections and audit rule adherence with ease.

Embedded Views: The Future of Work Tracking in GitLab

Thu, 21 Aug 2025 02:00:00 +0200

Introducing Embedded Views: Redefining Work Tracking in GitLab

GitLab is evolving how teams track their work with the introduction of Embedded Views, a next-generation way to customise and manage data within GitLab itself. This innovation aims to empower DevSecOps teams by improving visibility, flexibility, and control over their workflows — all from within the GitLab platform.

Previously, project managers and team leads had to rely on external tools or spreadsheets to generate the precise views they needed for planning, tracking progress, and reporting. With Embedded Views, GitLab now offers dynamic and interactive interfaces directly embedded in your workflows. These custom views allow users to define what data to display, how it’s visualised, and how it reacts to user input, all while keeping everything within GitLab’s secure environment.

GitLab 13: Pushing Boundaries with AI-Orchestrated Software Engineering

Thu, 21 Aug 2025 02:00:00 +0200

Supercharging Software Development with GitLab 13’s AI-Driven Orchestration

GitLab continues to lead the evolution of DevSecOps with the launch of GitLab 13, marking another key milestone in integrating artificial intelligence (AI) into the entire software development lifecycle. With a focus on orchestration, GitLab is redefining how teams plan, build and secure their applications with greater speed and confidence.

This latest iteration builds upon GitLab’s AI vision launched in 2023, integrating GitLab Duo – an AI-powered assistant that enhances productivity in areas such as code generation, vulnerability remediation, and even issue summarisation. Through its Responsible AI framework, GitLab ensures these tools are transparent, secure and privacy-conscious.

GitLab 18.3: Driving Innovation with AI-Powered Software Engineering

Thu, 21 Aug 2025 02:00:00 +0200

GitLab 18.3: A New Era of AI-Enhanced Software Engineering

GitLab’s latest release, version 18.3, takes a significant step forward in enabling seamless AI integration across the software development lifecycle. Building on its foundation of DevSecOps, GitLab now delivers more advanced orchestration, collaboration, and automation tools that empower engineering teams to ship faster, safer, and smarter.

Smarter Development through Multi-Agent AI

At the heart of GitLab 18.3 is an enhanced AI Orchestration Framework, introducing a multi-agent architecture that enables multiple AI agents to work together on complex development tasks. This update includes the new AI Agent for Merge Request Reviews, which analyses code changes and provides contextual suggestions—boosting both code quality and review efficiency.

GitLab Docs Site Gets a Sleek New Design

Wed, 20 Aug 2025 02:00:00 +0200

New Look and Feel: GitLab Docs Site Just Got a Major Overhaul

The GitLab Docs website has undergone a significant design update, delivering a cleaner, faster, and more accessible user experience to support developers and teams using GitLab more effectively.

The revamped design introduces a consistent visual style aligned with GitLab’s main site, offering better responsiveness for mobile users, enhanced navigation, and a more legible interface throughout the documentation.

Notable improvements include a redesigned homepage with quick access to popular topics, contextual side navigation, enhanced search functionality with faster results, and semantic structuring that improves accessibility for screen readers. Additional care has also been taken to preserve direct URL links and bookmarks to specific topics, ensuring a smooth transition for regular users.

GitLab 18.2.4 Security Patch Released – Upgrade Now

Mon, 18 Aug 2025 02:00:00 +0200

GitLab 18.2.4: Security and Stability Comes First

The latest GitLab security release, 18.2.4, has been published on 18 August 2025, bringing with it critical fixes to maintain the reliability and security of your DevSecOps lifecycle. As always, it’s strongly recommended to upgrade as soon as possible.

This release addresses several important concerns, most notably:

Important bug resolution in gitlab-rails, impacting service reliability and authentication workflows.
Dependable stability updates across the self-managed and hosted GitLab environments, including GitLab Community Edition (CE) and GitLab Enterprise Edition (EE).

All changes included in this patch are strategic fixes rather than new features—focusing on the uninterrupted performance of your GitLab instance.

What's New in Git 2.51.0 – Fast Status, Better Merges and Smarter Error Messages

Mon, 18 Aug 2025 02:00:00 +0200

What’s New in Git 2.51.0

The Git community continues to innovate, and the release of Git 2.51.0 delivers a robust set of new features, performance enhancements, and usability improvements. For developers and teams who depend on Git for source control, these advancements are more than just updates – they’re key steps toward more efficient workflows.

Enhanced `git status` Performance

One of the most noticeable improvements in Git 2.51.0 is the performance boost for git status on large repositories. Thanks to internal caching enhancements, users can now expect faster feedback times, especially in repositories with thousands of changed files or deep folder structures.

GitLab 17.11.7 Released: Key Fixes and Performance Enhancements

Fri, 15 Aug 2025 02:00:00 +0200

GitLab 17.11.7 Released: Enhancements and Key Fixes for Optimal Performance

We’re excited to share the latest maintenance release from GitLab: version 17.11.7 is here. This update brings essential security and bug patches that continue to improve the stability and usability of both GitLab Community and Enterprise Editions.

Among the headline updates, the release addresses a key bug in Sidekiq that resolves an issue where system logs were not being correctly processed during high-load situations. This change significantly improves backend reliability and performance under stress.

Why Financial Services Choose Single-Tenant SaaS with GitLab

Thu, 14 Aug 2025 02:00:00 +0200

Why Financial Services Choose Single-Tenant SaaS with GitLab

In today’s digital-first financial sector, regulatory compliance, data sovereignty, and operational resilience are critical. That’s why many financial services institutions are turning to single-tenant SaaS solutions like GitLab Dedicated.

Unlike multi-tenant SaaS, where resources are shared across numerous customers, single-tenant setups allocate a dedicated cloud environment to each organisation. This offers greater control, enhanced performance, and crucially for the financial sector, stricter data privacy and residency compliance.

GitLab 18.2.2 Patch Release - Bug Fixes and Improvements

Wed, 13 Aug 2025 02:00:00 +0200

GitLab 18.2.2 Patch Release Now Available

GitLab has announced the availability of the GitLab 18.2.2 patch release for both self-managed environments and GitLab.com. This targeted update addresses several regression issues and enhances the usability and reliability of the platform.

The patch includes fixes to recent regressions found in 18.2 and 18.2.1. Users are strongly encouraged to upgrade immediately in order to maintain optimal platform performance and security. GitLab recommends following the upgrade guidance to ensure a smooth transition.

Deep Dive into GitLab Duo: Leveraging Custom Rules and Agentic Chat

Tue, 12 Aug 2025 02:00:00 +0200

Exploring GitLab Duo: Custom Rules and Agentic Chat in Depth

GitLab continues to redefine DevSecOps productivity with innovations through GitLab Duo, their AI-assisted suite, notably featuring the new Custom Rules and Agentic Chat. These tools provide engineering teams with powerful capabilities to automate security policies and collaborate with intelligent agents directly within the GitLab platform.

The Custom Rules feature allows users to define specific protocols across their security scanning pipeline with precise YAML-based rule writing. By leveraging the GitLab Rules DSL, teams can script unique actions in response to specific types of scanning vulnerabilities—for example, choosing to open an issue, block a pipeline, or even ignore a finding after thorough consideration. This automates remediation workflows, reduces manual overhead, and ensures a secure, policy-driven development approach. It’s about empowering developers to codify their contextual understanding into enforceable practices.

Get Started with GitLab Duo Agentic Chat in the Web UI

Mon, 11 Aug 2025 02:00:00 +0200

Introducing GitLab Duo Agentic Chat: Your Intelligent Assistant in the Web UI

GitLab continues to push the boundaries of AI-assisted development with the introduction of GitLab Duo Agentic Chat, now available directly in the Web UI. This feature empowers developers and DevOps professionals by integrating a conversational AI assistant that understands context, recommends solutions, and accelerates workflows without leaving the GitLab environment.

With Agentic Chat, users can now engage in meaningful conversations with GitLab’s AI assistant, which draws from project data, documentation, and GitLab’s full feature set to generate code, answer questions, and propose optimisations. The chat interface supports rich interactions that go beyond simple Q&A—enabling intelligent dialogue that helps solve real problems in real time.

GitLab Duo Integrates Self-Hosted AI Models via AWS Bedrock

Thu, 07 Aug 2025 02:00:00 +0200

Expanded AI Model Support for Self-Managed GitLab with AWS Bedrock

GitLab continues to redefine DevSecOps by enabling self-managed users to integrate custom AI models hosted on Amazon Bedrock directly into their workflows. This new capability in GitLab Duo empowers organisations to select from a broad catalogue of foundation models—such as Anthropic’s Claude, Meta’s Llama, and Mistral—while maintaining control over their data and infrastructure.

Traditionally, GitLab Duo features were cloud-only. Now, through the GitLab Model Gateway, self-managed instances can benefit from intelligent code suggestions and natural language understanding using models securely hosted on an organisation’s existing AWS infrastructure.

GitLab Uncovers Theft Campaign Targeting Bittensor Tokens via PyPi Repository

Wed, 06 Aug 2025 02:00:00 +0200

GitLab Exposes Bittensor Token Theft Scheme via PyPi

In a significant security revelation, GitLab has uncovered a targeted cyberattack exploiting the popular PyPi package repository to infiltrate systems and steal Bittensor ($TAO) tokens. The attack was first detected by GitLab’s Threat Intelligence team, underscoring the critical role GitLab’s monitoring capabilities play in securing the software supply chain.

Threat actors uploaded malicious Python packages to PyPi, embedding them with functions designed to hijack SSH keys, extract cryptocurrency wallet data, and manipulate clipboard content. These packages were disguised as legitimate tools—typical of today’s increasingly sophisticated software supply chain attacks.

Maximise AI ROI at Scale with GitLab Duo Analytics

Wed, 06 Aug 2025 02:00:00 +0200

Understanding AI-Driven Development ROI with GitLab Duo Analytics

With the rise of generative AI in software development, businesses are keen to understand its true impact on productivity and efficiency. GitLab Duo Analytics provides the robust tools needed to quantify the ROI of AI-enabled workflows across your DevSecOps lifecycle.

Why Measure AI ROI?

While integrating AI can accelerate development, measuring its influence is essential. Without clear metrics, leaders can struggle to justify investments or identify optimisation opportunities. GitLab Duo Analytics enables teams to visualise how AI contributes to key software development metrics such as cycle time, merge request (MR) efficiency, and deployment frequency.

AI in Action Hackathon: GitLab’s Celebration of Intelligent Innovation

Tue, 05 Aug 2025 02:00:00 +0200

AI in Action Hackathon: Driving Innovation Within GitLab

GitLab recently hosted an internal event that showcased the incredible power of teamwork and artificial intelligence—the “AI in Action” Hackathon. Over the span of just two days, team members across departments came together to put innovative ideas into action, leveraging AI to enhance workflows, simplify tasks, and bring new functionalities to the GitLab DevSecOps platform.

This wasn’t just about coding quickly or experimenting randomly. Each team identified specific pain points, conceptualised novel solutions, and rapidly prototyped features using GitLab’s own comprehensive collaborative tools. Demonstrating the real-world capabilities of GitLab, participants succeeded in merging creativity with productivity, advancing AI-powered innovations that could benefit users globally.

GitLab’s Direct Transfer for Group Migration Is Now Generally Available

Thu, 31 Jul 2025 02:00:00 +0200

Direct Transfer Migration Now Generally Available

We are excited to share that GitLab’s direct transfer migration capability is now generally available. This feature streamlines the migration of GitLab groups from one instance to another, significantly simplifying the process for project and team migrations.

Previously introduced as a beta, group migration by direct transfer allows organisations to securely and reliably move their groups and associated data between GitLab instances with minimal downtime and manual configuration. This capability is especially useful for enterprises consolidating environments or migrating between self-managed and GitLab.com instances.

Securing AI Together: GitLab’s Collaborative Approach with Security Researchers

Thu, 31 Jul 2025 02:00:00 +0200

Partnering with Security Researchers to Secure AI

GitLab is reaffirming its commitment to responsible AI development by working closely with the global security research community. Through these partnerships, the platform is enhancing the safety and transparency of its AI-powered DevSecOps tools, ensuring that innovation doesn’t come at the cost of security.

Responsibility Built Into AI Features

As part of its Responsible AI Framework, GitLab integrates ethical and secure practices into the entire lifecycle of AI features. This includes rigorous auditing, human-in-the-loop oversight, and alignment with a transparent model of security. By embedding AI responsibly, users benefit from smarter solutions without compromising risk standards.

Continuous Innovation for Legacy Platforms

Fri, 25 Jul 2025 00:00:00 +0100

Many critical systems still operate on platforms often referred to as “legacy,” such as Solaris/SPARC, OpenVMS, Tru64/Digital/OSF1 UNIX, and HP-UX. The challenges that come with these aging platforms—including end-of-life support—introduce significant risk to business operations. Certain variants of IBM’s p/Series and z/Series also face these similar modernization challenges.

The business environment has changed too – leadership demands agility, faster delivery cycles, and stronger compliance. This often leads to pressure to rewrite or replace what already works.

Transform Your Compliance Observation Strategy with GitLab

Thu, 24 Jul 2025 02:00:00 +0200

Transforming Compliance Observation Management with GitLab

Ensuring robust compliance practices is more critical than ever for teams operating in highly regulated industries. Organisations often face the challenge of manual and siloed compliance observation processes that create unnecessary complexity and inefficiencies. With GitLab, it’s possible to modernise and simplify compliance observation management using automation, transparency, and a single source of truth.

GitLab’s all-in-one DevSecOps platform enables teams to integrate compliance directly into the software development lifecycle. By leveraging GitLab’s robust compliance features—such as merge request approval policies, audit events, and push rules—organisations can automate many of the processes traditionally handled through disparate tools and manual documentation.

Understanding the Challenges of Securing the Software Supply Chain

Thu, 24 Jul 2025 02:00:00 +0200

Why Do Organisations Struggle with Software Supply Chain Security?

As digital transformation accelerates, modern software development increasingly relies on open source components and cloud-native technologies. But this reliance also opens the door to rising risks in the software supply chain — an area where many organisations face significant challenges.

Events like the SolarWinds compromise and Log4j vulnerabilities have shown how threats can slip through even well-established practices. These incidents highlight a key question: why do organisations still struggle to secure their software supply chain?

GitLab 18.2.1 Patch Released – Fixes Key Issues from 18.2.0

Wed, 23 Jul 2025 02:00:00 +0200

GitLab 18.2.1 Patch Release Now Available

GitLab has announced the release of version 18.2.1, a critical patch addressing multiple regressions and bugs introduced in the previous 18.2.0 version. Users running 18.2.0 are strongly encouraged to upgrade at the earliest opportunity to ensure system stability and security.

This patch resolves significant issues, including problems with pipeline reliability, user interface glitches in project views, and performance bottlenecks encountered during deployments. Notably, GitLab 18.2.1 also fixes key API and CI/CD behavior inconsistencies that were affecting automation scripts and developer workflows.

GitLab’s Healthy Backlog Initiative: Streamlining Innovation

Wed, 23 Jul 2025 02:00:00 +0200

Inside GitLab’s Healthy Backlog Initiative

At GitLab, innovation and iteration are core values that drive product development. However, with an ever-growing inflow of feature requests, bug reports, and community contributions, maintaining a manageable backlog is essential. That’s where GitLab’s Healthy Backlog initiative comes into play.

The programme is designed to ensure that backlog items remain relevant, actionable, and aligned with GitLab’s strategic priorities. By refining their triage process, encouraging clearer issue descriptions, and improving collaboration between teams, GitLab aims to streamline product planning and enhance efficiency.

Bridging the Visibility Gap in Software Supply Chain Security

Mon, 21 Jul 2025 02:00:00 +0200

Closing Gaps in Software Supply Chain Visibility

The modern software supply chain is increasingly complex and decentralised, heightening concerns about visibility and security. Managing multiple tools, third-party dependencies, open source components, and distributed teams across various pipelines creates significant risks for organisations seeking compliance and resilience. GitLab addresses this challenge by integrating the software development lifecycle into a single, secure DevSecOps platform.

In recent years, several high-profile security breaches have highlighted vulnerabilities in the software supply chain, often due to a lack of transparency around where and how software components are built, sourced, and deployed. These issues are exacerbated by siloed development tools and scattered security processes, leaving gaps that malicious actors can exploit.

GitLab 18.2 Released – New AI-Powered Workflow and Better Security

Thu, 17 Jul 2025 02:00:00 +0200

GitLab 18.2 Released: Enhanced Security and AI Capabilities

The GitLab 18.2 release, available as of 17 July 2025, delivers a powerful mix of AI-powered efficiency, security enhancements, and workflow improvements to empower modern DevSecOps teams. As a GitLab Select Partner, IDEA GitLab Solutions is ready to help you leverage these features to optimise your software development lifecycle across the UK, Central Europe, and beyond.

Smarter with GitLab Duo: GitLab Duo expands its AI capabilities in this version, offering the ability to chat directly with the GitLab AI assistant, analyse projects more deeply, and provide AI-driven insights to improve productivity and collaboration. Enhanced context awareness now allows the AI assistant to summarise feedback in merge requests, streamlining reviews.

GitLab Duo Agent Platform Now in Public Beta

Thu, 17 Jul 2025 02:00:00 +0200

GitLab Duo Agent Platform Enters Public Beta

We’re excited to announce that the GitLab Duo Agent Platform is now available in public beta, taking another major step in redefining AI-powered software development workflows. This innovative platform integrates AI directly into the developer’s environment by embedding capabilities within GitLab runners and the broader CI/CD pipeline.

Designed with GitLab’s core principles of security, privacy, and compliance, the Duo Agent allows for secure access to contextual information during code generation, making suggestions more precise and relevant. Developers can now benefit from enhanced code ideation, refactoring, and test generation in an efficient and context-aware manner.

How GitLab Empowers Open Source Communities for Long-Term Success

Tue, 15 Jul 2025 02:00:00 +0200

Strengthening Open Source Communities with GitLab

GitLab is not only a complete DevSecOps platform but also a powerful enabler for open source development. By using GitLab itself to build and nurture open source communities, teams across the globe are accelerating innovation, improving collaboration, and driving long-term engagement.

With transparency and flexibility at its core, GitLab provides a streamlined environment for contributors to participate effectively, whether they’re filing issues, reviewing code, or deploying changes. Open source communities thrive on inclusivity, and GitLab facilitates that by enabling visibility into every stage of project evolution—empowering users to contribute with confidence and clarity.

GitLab Improves Deletion Workflows to Boost Security & Usability

Mon, 14 Jul 2025 02:00:00 +0200

Upcoming Enhancements to GitLab’s Deletion Process

In its commitment to continual platform improvement, GitLab is introducing a revamped deletion flow aimed at enhancing performance and security across projects and groups. Scheduled to roll out in the coming months, these changes will deliver a more intuitive and transparent experience for users managing removals of critical resources.

The updated process will introduce a two-stage deletion system with a clearer UI flow that helps users avoid accidental deletions. When a group or project is deleted, it will first move into a ‘pending deletion’ state. This grace period allows for reversal within a defined window before permanent removal, ensuring greater protection against data loss.

Software Development Best Practices in the LLM Era

Thu, 10 Jul 2025 02:00:00 +0200

Three Key Practices for Building Software in the Age of Large Language Models

The rise of large language models (LLMs) is reshaping how we develop software. These powerful AI tools can significantly enhance productivity, automate coding tasks, and aid in decision-making processes, but integrating them effectively into your development lifecycle requires a thoughtful approach.

1. Implement Responsible AI Usage Frameworks

While LLMs provide advanced capabilities for code generation and documentation, developers must prioritise responsible usage. Establishing ethical guidelines — especially concerning data privacy, bias mitigation, and explainability — is essential. Utilise internal policies to ensure LLMs operate within secure and compliant boundaries, particularly when handling sensitive codebases.

GitLab 18.1.2 Patch Release Resolves Bugs and Enhances Geo Stability

Wed, 09 Jul 2025 02:00:00 +0200

GitLab 18.1.2 Patch Release Improves Stability and Fixes Critical Bugs

The GitLab team has released GitLab 18.1.2, a vital patch that addresses a number of bugs discovered in version 18.1.1. This update continues GitLab’s commitment to delivering reliable and secure development operations tooling.

Notably, this patch fixes an error that could occur when resolving projects referenced in package.json files within the Visual Studio Code GitLab Workflow extension. With this change, developers using VS Code in combination with GitLab’s DevSecOps platform will benefit from a more seamless developer experience.

Accelerate Learning and Delivery with GitLab Duo Agent Platform

Mon, 07 Jul 2025 02:00:00 +0200

Accelerate Learning and Delivery with GitLab Duo Agent Platform

The GitLab Duo Agent Platform introduces a new frontier in AI-assisted software development. As part of GitLab’s evolving AI strategy, this platform provides a modular, extensible framework that empowers enterprises to build, customise, and securely operate AI-powered workflows within the DevSecOps lifecycle.

At the core of this innovation is the concept of a Duo Agent, a specialised AI model designed to perform specific software development tasks like suggesting code changes or streamlining reviews via merge requests. Each Agent is constructed on GitLab’s foundational AI framework, enabling it to operate efficiently across environments and follow your organisation’s compliance and security requirements.

Fast and Secure AI Agent Deployment to Google Cloud with GitLab

Mon, 07 Jul 2025 02:00:00 +0200

Deploying AI Agents to Google Cloud Made Easy and Secure with GitLab

As artificial intelligence continues to shape the future of technology, deploying machine learning and AI agents swiftly and securely has become vital for modern software teams. By leveraging GitLab’s DevSecOps platform in conjunction with Google Cloud, developers can streamline the complete lifecycle of AI agent deployment—from code to cloud—in a fully automated, traceable, and secure environment.

GitLab enables a seamless experience by integrating model creation, testing, containerisation, CI/CD pipelines and security all within a single application. Using GitLab with Google Cloud’s AI Platform and services such as Vertex AI and Cloud Run, it is now easier than ever for teams to define workflows that deliver scalable, compliant AI solutions with minimal effort.

Improving CI/CD Security and Usability with GitLab Pipeline Inputs

Mon, 07 Jul 2025 02:00:00 +0200

Streamlining Pipeline Parameters with GitLab Inputs

In modern DevOps, maintaining both security and flexibility in CI/CD pipelines is critical. GitLab has introduced a powerful new feature—Inputs—providing a secure and standardised method for passing parameters to pipelines.

Traditionally, setting pipeline variables relied heavily on manual interaction or unstructured API payloads. This posed usability challenges and potential security flaws, especially when exposing sensitive data. Inputs offer a programmable and user-friendly solution that directly addresses these concerns.

Boost Software Quality with AI-Powered Test Automation in GitLab

Thu, 03 Jul 2025 02:00:00 +0200

Enhancing Software Quality with AI-Powered Test Generation in GitLab

As modern software development accelerates, maintaining high application quality while meeting tight deadlines is increasingly challenging. GitLab now empowers teams with an AI-assisted test generation capability that makes testing more efficient and comprehensive.

This innovative feature leverages GitLab Duo, GitLab’s integrated suite of AI tools, to automatically generate suggested test cases directly from your source code changes. These recommendations appear as suggested updates in merge requests, helping developers identify potential quality gaps before code is merged.

Why Now is the Time for Embedded DevSecOps - Secure Your Software Lifecycle

Tue, 01 Jul 2025 02:00:00 +0200

Why Now is the Time for Embedded DevSecOps

Software development today demands speed, scalability, and security, all without sacrificing quality. As digital transformation accelerates across industries, the need to embed security directly into the development lifecycle—also known as DevSecOps—has never been more urgent.

Security built as a bolt-on after development can no longer keep up with modern continuous integration and continuous delivery (CI/CD) practices. This outdated approach results in security bottlenecks, delayed releases, and increased risk exposure. Embedded DevSecOps brings security

GitLab Detects Malicious MongoDB Go Module in Supply Chain Defence

Mon, 30 Jun 2025 02:00:00 +0200

GitLab Blocks Malicious Go Module to Thwart Supply Chain Threat

In a significant victory for software supply chain security, GitLab has successfully blocked a malicious Go module targeting MongoDB users. This action pre-empted a potential supply chain attack which could have compromised thousands of projects globally. The threat was identified as a module masquerading under the name github.com/mongodb/mongo-go-driver, which closely mimicked the legitimate package used by many developers.

GitLab’s security measures flagged the suspicious module during routine project imports, where its name and behaviour triggered alerts. Security teams confirmed that the module contained encoded payloads designed to collect system data and exfiltrate secrets from compromised environments.

Accelerate Your Workflow with GitLab's Exact Code Search

Wed, 25 Jun 2025 02:00:00 +0200

Find Code Faster with GitLab’s New Exact Code Search

GitLab has introduced Exact Code Search, a powerful new way to search, discover, and review code across multiple repositories with unmatched speed and precision. This enhancement is available with the GitLab Premium and Ultimate tiers and is designed to significantly reduce the time developers spend searching through their codebases.

Unlike the legacy search functionality, Exact Code Search enables line-accurate, real-time search results across all repositories in your workspace. It leverages Rust-based search technology backed by Zoekt, ensuring lightning-fast performance and precise results that display exact match highlighting and surrounding context.

GitLab 18.1.1 Patch Release: Critical Fixes for Self-Managed Users

Wed, 25 Jun 2025 02:00:00 +0200

GitLab 18.1.1 Patch Release Now Available

On 25 June 2025, GitLab issued version 18.1.1—a vital patch release addressing a deployment fault affecting self-managed users. This release follows GitLab’s commitment to providing rapid and stable fixes for critical issues encountered in new versions.

The concern rectified in 18.1.1 stemmed from a regression issue where postgres_exporter['log_directory'] was incorrectly set during the templating process. This misconfiguration potentially disrupted monitoring visibility. GitLab 18.1.1 corrects this behaviour, restoring expected stability for environments relying on PostgreSQL performance metrics.

Model Selection Comes to GitLab Duo: Innovation Meets Governance

Wed, 25 Jun 2025 02:00:00 +0200

Accelerate Innovation while Maintaining Control with GitLab Duo’s New Model Selection

Organisations looking to harness the power of AI-driven development while maintaining governance and compliance can now benefit from GitLab Duo’s latest innovation: Model Selection. This powerful feature gives users the flexibility to select which AI models integrate into their GitLab environment, offering greater control without compromising the enhanced productivity delivered by AI.

Businesses in regulated industries or those with specific data governance requirements can now configure GitLab Duo to use approved models only, whether hosted by GitLab or externally. Model Selection is designed to help teams innovate faster while respecting their organisation’s policies and compliance needs.

Optimising Git Fetch Performance with Git Bundle URIs in GitLab

Tue, 24 Jun 2025 02:00:00 +0200

Boost GitLab Performance with Git Bundle URIs

GitLab continues to drive innovation in DevOps efficiency, and recent updates introduce powerful support for the Git Bundle URI protocol, now enabled by default in GitLab.com and within the GitLab 17.1 self-managed release. This enhancement is designed to improve fetching speeds while reducing backend load on Gitaly and Gitaly Cluster, the services that handle Git repository data within GitLab.

Why Git Bundle URIs Matter

When a developer performs a git fetch from a GitLab project, a set of objects is transferred from the server to their local repository. For larger repositories or frequent CI/CD activity, this can generate substantial demand on the Git infrastructure. Enter Git Bundle URIs—compressed files containing Git objects that can be fetched via HTTP—and reused across sessions, which lightens the load on Gitaly servers.

What’s Next for Intelligent DevSecOps: GitLab Duo and Agent Platform

Tue, 24 Jun 2025 02:00:00 +0200

Unveiling the Future of Intelligent DevSecOps with GitLab Duo and Agent Platform

GitLab continues to redefine the DevSecOps landscape with its recent innovations – the GitLab Duo and Agent Platform. These advancements represent a leap forward in software development, bringing even greater automation, intelligence, and integration to development teams across the globe.

The GitLab Duo is an AI-powered assistant purpose-built for DevSecOps, seamlessly integrated into GitLab’s workflow to support developers, security professionals, and operations teams. With capabilities such as next-generation code suggestions, threaded conversational interactions, and contextual awareness rooted in the GitLab full-stack ecosystem, GitLab Duo goes beyond typical generative AI tools. It provides smart recommendations during merge requests, refines code suggestions based on environment telemetry, and helps manage incidents with increased precision and context.

GitLab Ultimate for IBM Z: Modern DevSecOps for Mainframes

Mon, 23 Jun 2025 02:00:00 +0200

Empowering IBM Z with GitLab Ultimate: Modern DevSecOps for Mainframes

Mainframes like IBM Z remain vital in industries such as finance, healthcare, and government, where stability, performance, and security are paramount. However, development practices on these platforms often lag behind cloud-native environments. GitLab Ultimate bridges this gap, delivering a unified, modern, and secure DevSecOps experience for mainframe development teams.

Traditionally, mainframe development relied on manual processes, siloed teams, and fragmented toolchains. These methods hinder collaboration, slow down innovation, and increase operational risk. With GitLab Ultimate, mainframe teams can integrate automated CI/CD pipelines, security testing, compliance enforcement, and collaboration tools into a single application—all supported on IBM Z systems via standard tooling such as Git and GitLab runners.

Automating Role-Based Access Control (RBAC) at Enterprise Scale with GitLab

Fri, 20 Jun 2025 02:00:00 +0200

Streamlining Role-Based Access Control (RBAC) at Scale with GitLab

Organisations managing vast software development environments across multiple teams and regions often face challenges in maintaining consistent access control. GitLab addresses these challenges by supporting programmatic management of role-based access control (RBAC) policies at an enterprise scale.

With automation-friendly tools like GitLab’s Terraform Provider and REST API, administrators can now define and manage permissions efficiently across dozens or even hundreds of groups and projects. This approach not only reduces manual workloads but also improves security and compliance by applying uniform access rules from a centralised source.

GitLab Ultimate for IBM Z: Modern DevSecOps for Mainframes

Fri, 20 Jun 2025 02:00:00 +0200

Accelerating Mainframe Modernisation with GitLab Ultimate for IBM Z

In a significant advancement for enterprises relying on mainframe infrastructure, GitLab has extended GitLab Ultimate support to IBM Z, delivering a modern, secure, and fully integrated DevSecOps platform for mainframe development. This evolution transforms development workflows, enabling a scalable and automated lifecycle experience grounded in best-in-class security and compliance practices.

Enterprises utilising IBM Z systems, known for their performance, reliability, and security, can now unify mainframe and cloud-native development within GitLab’s single application. Centralising CI/CD, security scanning, compliance controls, code repositories and collaboration capabilities empowers teams to improve delivery speed while preserving compliance and governance—a critical requirement for highly regulated industries.

GitLab 18.1 Released: Smarter DevSecOps and AI-Powered Development

Thu, 19 Jun 2025 02:00:00 +0200

What’s New in GitLab 18.1: Accelerating DevSecOps Efficiency and Collaboration

GitLab 18.1 is now live, delivering a new array of innovations designed to help teams develop, secure, and operate software more effectively. This release features powerful enhancements in code security, AI-driven development, and streamlined collaboration, all in line with GitLab’s direction towards a unified DevSecOps platform.

Code Suggestions Enhanced with Contextual Awareness

AI-powered Code Suggestions now support contextual understanding using surrounding code. While still experimental, this update allows the AI assistant to generate more accurate code completions by leveraging larger sections of your codebase. To activate this, repositories must contain over 2 KB of content and use accepted languages such as JavaScript and Python. This uptake brings faster coding and reduced context switching.

What’s New in Git 2.50 – Boosting Clone Efficiency and Worktree Usability

Mon, 16 Jun 2025 02:00:00 +0200

Exciting Enhancements in Git 2.50: What You Need to Know

The latest release of Git, version 2.50, brings a host of improvements and refinements designed to simplify everyday development workflows and boost performance across the board. Whether you’re managing small personal projects or maintaining vast enterprise repositories, Git 2.50 offers something for everyone.

Improved clone efficiency: One of the most significant updates in Git 2.50 is the smarter git clone behaviour, now optimised to determine a more accurate HEAD reference by reading repository metadata before downloading object data. This change enhances the speed and reliability of cloning operations, particularly on large-scale or third-party-hosted repositories.

GitLab 18.0.2 Patch Release Delivers Essential Fixes

Wed, 11 Jun 2025 02:00:00 +0200

GitLab 18.0.2 Patch Release Introduces Security and Stability Fixes

GitLab has rolled out version 18.0.2 as its latest patch release, focusing on rectifying select regressions and security vulnerabilities found in earlier versions. This update is recommended for all existing users of the 18.0 branch to ensure ongoing performance and protection.

While it does not bring major new features, version 18.0.2 solves issues that could have impacted certain deployments and functionality. The GitLab team advises prompt upgrading to benefit from the corrected behaviour and patched vulnerabilities.

Accelerate GitLab Code Reviews with AI-Driven Feedback Implementation

Tue, 10 Jun 2025 02:00:00 +0200

Accelerate Your Code Reviews with AI-Powered Feedback Implementation

Code reviews are a cornerstone of quality software development, yet they often introduce delays to the development process. With the latest GitLab innovation, developers can now speed up the feedback cycle using AI-generated suggestions. The new feature allows AI to automatically implement reviewer feedback, significantly cutting down the manual overhead traditionally involved in code reviews.

Available to GitLab Premium and Ultimate users, this build on GitLab Duo introduces a smart button next to the reviewer comment. The Apply Suggestion with AI function automatically generates a code update proposal directly from the review comment context. Users are shown a diff preview and must manually commit if the change looks correct—ensuring human oversight while leveraging machine speed.

AI-native GitLab Premium Redefines Higher Education Software Development

Tue, 10 Jun 2025 02:00:00 +0200

Revolutionising Software Development in Higher Education with AI-native GitLab Premium

In a trailblazing move, GitLab has introduced its AI-native GitLab Premium designed to accelerate and transform software development initiatives across higher education institutions. This evolution caters specifically to the evolving needs of universities and research teams facing IT resource constraints and rapidly advancing technology demands.

The AI-native GitLab Premium brings together efficiency and intelligence through automated workflows, context-aware code suggestions, and integrated security — making it possible for academic software teams to ship faster and safer. With AI embedded natively, GitLab helps streamline the complete DevSecOps lifecycle, removing friction and manual effort from idea to production.

GitLab Advances on Secure by Design Pledge One Year On

Mon, 09 Jun 2025 02:00:00 +0200

One Year of Secure by Design: GitLab’s Progress

In June 2024, GitLab proudly joined forces with fellow technology leaders to sign the Secure by Design pledge, a commitment driven by the US Cybersecurity and Infrastructure Security Agency (CISA) to embed cybersecurity into every layer of software development. One year later, GitLab reflects on the strides made to foster a secure software supply chain — benefits that are already reshaping DevSecOps for better resilience and safety.

4 Ways to Accelerate Embedded Development with GitLab

Thu, 05 Jun 2025 02:00:00 +0200

Accelerate Embedded Development with GitLab: Four Powerful Techniques

Embedded systems power everything from medical equipment to smart appliances. Yet, teams developing embedded software often face unique challenges, ranging from complex toolchains to hardware dependencies. Leveraging GitLab’s all-in-one DevSecOps platform, embedded development teams can streamline workflows, drive collaboration, and boost delivery speed without compromising reliability or security. Here are four effective ways to enhance your embedded development using GitLab.

1. Unify Silos Across the Lifecycle

Embedded development often involves disconnected teams—hardware engineering, software engineers, testers, and security specialists—all working with disparate tools. GitLab’s single application helps unify these workflows, promoting transparency and better collaboration. By bringing together planning, source code management, CI/CD, security testing, and monitoring in one interface, teams can work more efficiently and break down traditional barriers that slow delivery.

How GitLab Reduced Repository Backup Times from 48 Hours to 41 Minutes

Thu, 05 Jun 2025 02:00:00 +0200

Reducing GitLab Repository Backup Times: From 48 Hours to Just 41 Minutes

At GitLab, efficiency, scalability, and data safety are critical. That’s why a recent internal project to optimise repository backup times stands as a milestone worth sharing. What originally took 48 hours was slashed down to an astonishing 41 minutes—an 98.5% improvement.

This remarkable advance came in response to a growing pressure. As the number of Git repositories at GitLab.com increased substantially, so did the time needed for daily backups. The legacy method of backing up one project at a time couldn’t keep pace. The GitLab team approached this challenge with a focus on parallelisation, resource reallocation, and reliability.

Accelerate Code Reviews with GitLab Duo and Amazon Q

Mon, 02 Jun 2025 02:00:00 +0200

Accelerate Code Reviews with GitLab Duo and Amazon Q

At IDEA GitLab Solutions, we are excited to share the latest innovation from GitLab that’s designed to supercharge your development workflow: tighter integration between GitLab Duo and Amazon Q. This collaboration represents the next step in AI-augmented software development, cutting down review cycles and boosting code quality across teams of all sizes.

With GitLab Duo, developers are already enjoying AI-driven pair programming assistance, intelligent code suggestions, and optimised issue creation. Now, with Amazon’s Generative AI assistant Amazon Q, GitLab takes AI integration even further. Developers can perform natural language queries to get instant documentation, gain architectural insights, and automate report generation — all within their GitLab environment.

GitLab Recognised as a DevOps Leader in Forrester Wave, Q2 2025

Mon, 02 Jun 2025 02:00:00 +0200

GitLab Recognised as a Leader in DevOps by Forrester

GitLab has once again proven its leadership in the DevOps space by being named a Leader in The Forrester Wave™: DevOps Platforms, Q2 2025. The report highlights GitLab for its end-to-end DevSecOps capability, comprehensive features, and continued product innovation. This recognition affirms GitLab’s role in supporting large-scale, secure, and efficient software delivery pipelines.

In Forrester’s evaluation of 13 vendors, GitLab scored among the highest in both ‘Strategy’ and ‘Current Offering’ categories. Notably, Forrester praised GitLab’s vision for AI-powered DevSecOps workflows, tight integration across all stages of the development lifecycle, and its ease of use in onboarding cross-functional teams.

Why Organisations Are Embracing a Unified DevSecOps Platform

Mon, 02 Jun 2025 02:00:00 +0200

Streamlining Software Delivery with Unified DevSecOps

In today’s fast-moving digital landscape, organisations are quickly realising the value of transitioning from fragmented toolchains to a single, unified DevSecOps platform. As the complexities of software development grow, the need for integrated processes that foster efficiency, security, and collaboration has become paramount.

Reducing Tool Sprawl and Complexity

Historically, development teams have stitched together multiple tools for version control, CI/CD, testing, security, and deployment—often resulting in inconsistencies, increased maintenance, and reduced visibility. A unified platform such as GitLab eliminates tool sprawl by consolidating the entire DevSecOps lifecycle into one application, reducing the mental load on developers and simplifying toolchain management for IT leaders.

GitLab Duo Chat Enhanced with Intelligent, Agentic AI Capabilities

Thu, 29 May 2025 02:00:00 +0200

Taking Conversations to the Next Level: GitLab Duo Chat Gets Smarter with Agentic AI

GitLab has announced a significant update to GitLab Duo Chat, transforming it from a reactive chatbot into an intelligent, agentic AI assistant. This new generation of AI functionality empowers developers with a more interactive and contextual companion that actively supports productivity and DevSecOps workflows.

Rather than simply responding to isolated commands, GitLab Duo Chat now acts as an AI-powered teammate. It understands developer intent, maintains context within conversations, and completes sophisticated tasks by leveraging GitLab’s full platform capabilities — all while staying within a single developer environment.

Understanding Large Language Models (LLMs)

Thu, 29 May 2025 02:00:00 +0200

What are Large Language Models (LLMs)?

Large Language Models, or LLMs, are a leading technology in artificial intelligence that enable systems to understand and generate human-like text. Trained on vast data sets, these models learn patterns in language and context, enabling them to answer questions, write code, translate languages, and even create original content.

How do LLMs work?

LLMs operate using deep learning algorithms, primarily transformer architectures. These structures allow the models to consider the context of words within a sentence or paragraph, producing highly relevant and coherent outputs. The training process involves feeding the model a significant volume of text data, allowing it to predict and generate responses based on learned sequences.

Getting Started with GitLab: CI/CD Variables Explained

Tue, 27 May 2025 02:00:00 +0200

Mastering CI/CD Variables in GitLab: A Beginner’s Guide

As modern development workflows increasingly embrace automation, understanding CI/CD variables in GitLab is essential for developers and DevOps teams. These variables offer powerful ways to customise pipeline behaviour, manage secrets securely, and simplify complex build and deploy processes.

What Are GitLab CI/CD Variables?

CI/CD variables in GitLab act as environment variables accessible within your pipelines. They can hold anything from simple configuration values to sensitive data like API keys and credentials. Whether defined at project, group, or instance level, variables enable dynamic pipeline execution and support secure CI/CD practices.

Upgrade from GitLab CE to Premium - Special Offer Ends July 31

Fri, 23 May 2025 02:00:00 +0200

🚀 GitLab Premium – Get 50 seats at 19 USD/user/month
🎯 Normally $29/user/month – now 34% off
📅 Offer valid until July 31

Are you using GitLab CE and building workarounds for features like Merge Approvals or Security Scans?

This limited offer makes it affordable to switch to GitLab Premium — packed with features that replace manual work and boost team productivity.

Is GitLab Premium Right for You?

Feature	CE Users Today	Premium Users
Merge Approvals	Manual enforcement	Automatic merge control
Security Scans	DIY scripts	Built-in scanning + compliance
CI Minutes	Self-host only	SaaS runners included
Support	Community	GitLab support team
Compliance Dashboard	Not available	Visual compliance tracking
Audit Logs	None	Built-in access and change auditing
Project Insights	Basic only	Value Stream Mapping

Free GitLab CE Audit

We’re offering a free audit to help you evaluate the upgrade.

Accelerate TypeScript Migration with GitLab Duo Workflow

Thu, 22 May 2025 02:00:00 +0200

Refactoring JavaScript to TypeScript Using GitLab Duo Workflow

Modernising legacy JavaScript codebases has long been a challenge for development teams striving for better maintainability, improved type safety, and a more robust developer experience. With the new GitLab Duo Code Suggestions and GitLab Workflow integration, transitioning your code from JavaScript to TypeScript is now faster, safer, and more efficient than ever.

GitLab Duo leverages AI-powered assistance directly within your existing workflow to help teams automate and accelerate the refactoring process. Through natural language prompts and context-aware code generation, GitLab Duo can provide inline, accurate TypeScript suggestions where needed most—reducing the overall manual effort when updating your applications.

GitLab Adds Compromised Password Detection for Enhanced Account Security

Thu, 22 May 2025 02:00:00 +0200

Strengthening GitLab.com Security with Compromised Password Detection

GitLab continues to prioritise your account security by introducing a significant new feature: Compromised Password Detection on GitLab.com accounts. As of today, GitLab.com now checks user passwords against a continually updated database of known compromised passwords sourced from security breaches and data leaks around the web.

When signing up or updating your password, GitLab will automatically verify that the entered password has not appeared in public data breaches, significantly reducing the risk of account hijacking through credential stuffing attacks. This check is seamless, with no impact on user experience, and respects user privacy by conducting the verification process securely and anonymously.

Secure and Optimise Your Maven Repository in GitLab

Thu, 22 May 2025 02:00:00 +0200

How to Secure and Optimise Your Maven Repository in GitLab

Managing Maven repositories securely and efficiently is crucial for development teams, especially when dealing with enterprise-scale projects. In GitLab, you can streamline and protect your Maven packages directly within your CI/CD pipelines, ensuring a seamless and secure software delivery process.

The built-in GitLab Maven package registry allows you to host and share Java packages with robust access controls in place. GitLab introduced important enhancements such as downloadable metadata and group-level caching, which improve performance and security when using the GitLab Package Registry for Maven.

GitLab 18.0.1 Patch Release Issued with Critical Fixes

Wed, 21 May 2025 02:00:00 +0200

GitLab 18.0.1 Patch Release Now Available

GitLab has announced the availability of version 18.0.1, the first patch release following the major 18.0 update. This latest version addresses several key issues to improve overall stability and user experience.

Among the most notable fixes is a resolution for compatibility problems with Elasticsearch indexing when upgrading from GitLab 17.11 to 18.0. Users experiencing issues with search indexing should find this patch particularly valuable. Additionally, a bug in the CI pipeline email notification system that prevented messages from being sent correctly has been resolved.

GitLab Dedicated for Government Achieves FedRAMP Authorization

Mon, 19 May 2025 02:00:00 +0200

GitLab Dedicated for Government Now FedRAMP Authorised

We are pleased to announce that GitLab Dedicated for Government has officially achieved FedRAMPⓇ Moderate Authorisation. This milestone offers United States federal agencies a secure and scalable DevSecOps platform tailored to meet the stringent privacy and compliance requirements of government cloud environments.

FedRAMP (Federal Risk and Authorisation Management Program) is a critical US government programme that standardises security authorisation for cloud services. With this authorisation, GitLab becomes one of the few platforms that provide an end-to-end DevSecOps solution in a compliant, isolated, and single-tenant environment specifically designed for public sector use.

GitLab 18.0 Released: Next-Level AI, Secure CI/CD and Optimised Performance

Thu, 15 May 2025 02:00:00 +0200

GitLab 18.0: A New Era of Software Development Efficiency

GitLab 18.0 has arrived, marking a significant milestone in DevSecOps platform evolution. This major release introduces powerful AI-backed capabilities, improved integration flows, and long-awaited usability enhancements—empowering teams to collaborate faster, deploy more confidently, and innovate securely.

AI-Driven Innovation with GitLab Duo

The new GitLab Duo Experience is now generally available. Featuring AI-assisted code explanations, intelligent test generation, vulnerability summaries, and suggested reviewers, this marks a leap in collaborative development and secure coding. Designed with privacy at the forefront, GitLab Duo ensures that your proprietary code never leaves the platform.

GitLab Premium Now Includes GitLab Duo AI Features

Thu, 15 May 2025 02:00:00 +0200

New GitLab Duo AI Capabilities Now Included in Premium Tier

GitLab has announced a significant expansion of its AI capabilities by integrating GitLab Duo directly into the Premium tier. This strategic move means that features previously restricted to Ultimate and trial tiers are now available to Premium users for evaluation, offering powerful tools that supercharge developer productivity through AI assistance.

With GitLab Duo, teams can benefit from features like code suggestions, code explanations, and AI-influenced merge request descriptions. These tools are designed to streamline development workflows by reducing cognitive load, automating repetitive tasks, and enabling faster and more secure code delivery. The AI-driven functionalities aim to support every phase of the software development lifecycle, from planning and development to testing and deployment.

Step-by-Step Evaluation of Runtime Security Tools | GitLab Solutions

Tue, 13 May 2025 02:00:00 +0200

A Step-by-Step Guide to Evaluating Runtime Security Tools

In today’s rapidly evolving DevOps landscape, real-time protection of your applications and infrastructure is a must. Runtime Security Tools are crucial components in defending against dynamic threats and vulnerabilities while software is actively running. But with many tools available, selecting the right one can be overwhelming. Here’s a step-by-step guide to evaluate and choose the most appropriate Runtime Security solution for your organisation.

Explore GitLab's Agentic AI Guides and Enterprise Resources

Wed, 07 May 2025 02:00:00 +0200

Harnessing the Power of Agentic AI in GitLab

GitLab’s latest innovation in AI, Agentic AI, is reshaping the way teams interact with DevSecOps workflows. Unlike traditional assistants, Agentic AI acts, plans, and adapts to accomplish user-defined goals, rather than just responding to single instructions. This transformative approach introduces a new level of automation and collaboration across the software development lifecycle.

To help teams onboard this powerful capability, GitLab has introduced a range of helpful resources. The Agentic AI Guide is a structured, step-by-step playbook designed for enterprise adoption, covering everything from value stream identification to assessing tooling use. It’s accompanied by educational videos and templates to assist organisations in tailoring AI strategies for their unique workflows.

GitLab 17.11.2 Patch Release Now Available – Enhanced Stability and Fixes

Wed, 07 May 2025 02:00:00 +0200

GitLab 17.11.2 Patch Release Now Available

We are pleased to announce that GitLab 17.11.2, a new patch release for GitLab 17.11, is now available. This update includes important bug fixes aimed at enhancing stability and performance across the platform.

Among the improvements in this release are fixes for a data masking issue in audit events, improved error handling in the issue tracking API, and resolution of UI inconsistencies affecting merge request approvals and time tracking. These refinements contribute to more secure and reliable collaboration workflows.

Automate Repetitive Coding with GitLab Duo Workflow

Tue, 06 May 2025 02:00:00 +0200

Streamline Your Development Process with GitLab Duo Workflow

Software development can often be bogged down by repetitive and error-prone tasks—code generation, refactoring, documentation updates and more. GitLab Duo Workflow provides AI-enhanced coding assistance integrated directly into your DevSecOps lifecycle to handle these tedious responsibilities, allowing developers to focus on what truly matters: writing high-quality, valuable software.

GitLab Duo Workflow is the latest evolution of GitLab’s efforts to embed AI into all aspects of software development. As part of the wider GitLab Duo offering, the Workflow component goes beyond simple autocomplete. It enables AI-assisted actions from within the GitLab Web IDE and Merge Requests, empowering developers with tools to generate, update, or fix code across projects with greater speed and accuracy.

Enhance DevSecOps with GitLab’s Custom Compliance Frameworks

Wed, 30 Apr 2025 02:00:00 +0200

Streamline Regulatory Compliance in DevSecOps with GitLab

Modern software delivery demands not only speed and quality, but also rigorous security and compliance. GitLab’s custom compliance frameworks offer a powerful solution for automating and enforcing regulatory policies across your software development lifecycle.

With these frameworks, organisations can implement governance controls directly within their CI/CD pipelines. By defining policy-as-code, teams ensure every merge request is evaluated against internal standards and industry regulations—creating a proactive approach to risk mitigation without slowing down innovation.

Accelerate Your Development with GitLab Duo and Amazon Q

Mon, 28 Apr 2025 02:00:00 +0200

Transform Your Ideas into Code Faster with GitLab Duo and Amazon Q

GitLab has taken a significant step forward by integrating Amazon Q, Amazon’s new AI coding assistant, with GitLab Duo, its AI-powered productivity suite. This collaboration aims to empower development teams to seamlessly turn ideas into production-ready code within minutes, while ensuring compliance with corporate standards and security protocols.

What is Amazon Q?

Amazon Q is an innovative generative AI-powered assistant designed specifically for software development. It enhances GitLab users’ ability to automate tasks, accelerate code development, and maintain standards without additional context-switching or tool management hurdles.

Getting to Grips with GitLab: A Guide to CI/CD

Fri, 25 Apr 2025 02:00:00 +0200

Getting to Grips with GitLab: A Guide to CI/CD

Continuous Integration and Continuous Delivery (CI/CD) are essential practices in modern software development, and GitLab offers a robust set of tools to simplify their implementation. Whether you’re just beginning or looking to refine your workflows, understanding GitLab’s CI/CD pipeline is vital.

At its core, GitLab CI/CD automates the process of building, testing, and deploying code. This not only streamlines development but also ensures code quality and consistency. The CI/CD pipelines in GitLab are defined in a file called .gitlab-ci.yml, which resides in the root of your project. This YAML file dictates every job in the pipeline—covering stages like build, test, and deploy.

Addressing Complex Development Challenges Using GitLab Duo Workflow

Wed, 23 Apr 2025 02:00:00 +0200

Addressing Complex Software Development Challenges with GitLab Duo Workflow

Modern software development demands speed, collaboration, and precision. Teams often face struggles that stem from isolated workflows, miscommunication, and the ever-present pressure to deliver faster. Enter GitLab Duo Workflow – a groundbreaking approach that fuses AI-powered tools with GitLab’s single DevSecOps platform to empower teams and transform the way they work.

GitLab Duo is not just another tool; it’s an integrated pair programming experience that helps developers write better code, faster. With the GitLab Duo Workflow, teams are now able to tackle the most complex challenges in development by streamlining tasks, reducing cognitive load, and enabling secure, efficient collaboration – even across distributed teams.

Patch Release GitLab 17.11.1: Critical Security & Regression Fixes

Wed, 23 Apr 2025 02:00:00 +0200

GitLab 17.11.1 Patch Release: Security and Stability Updates

On 23 April 2025, GitLab announced the release of version 17.11.1, a critical patch release addressing several notable security and regression issues identified in the 17.11 release. This update is part of GitLab’s regular monthly maintenance schedule and is strongly recommended for all installations.

The 17.11.1 patch resolves multiple vulnerabilities and bugs, ensuring improved performance and platform security. All GitLab users—across GitLab Community Edition (CE) and GitLab Enterprise Edition (EE)—are encouraged to upgrade promptly to benefit from enhanced security measures and to maintain platform harmony.

Understand the Breaking Changes in GitLab 18.0 | GitLab Solutions

Fri, 18 Apr 2025 02:00:00 +0200

Breaking Changes in GitLab 18.0: What You Need to Know

GitLab 18.0 introduces several breaking changes designed to enhance security, performance, and the consistency of workflows across the platform. Users preparing for the upgrade should familiarise themselves with these changes to ensure a smooth transition and continued operational efficiency.

CI/CD Pipeline and Runners

GitLab 18.0 removes support for shell executors on GitLab-hosted runners, including the old Ruby-based GitLab Runner. This change encourages migration to modern, supported executors like Docker, Kubernetes, or custom executors, ensuring better isolation and security in your CI/CD workflows.

Custom Compliance Frameworks Now in GitLab

Thu, 17 Apr 2025 02:00:00 +0200

Custom Compliance Frameworks Now Available in GitLab

We are excited to announce the introduction of custom compliance frameworks in GitLab, empowering teams to define and enforce specific security and compliance rules that align with their unique operational and regulatory needs.

Built to support organisations with complex governance and audit requirements, these new capabilities are particularly relevant for industries like finance, healthcare, or government where regulatory mandates vary significantly. With this feature, GitLab administrators can create tailored compliance frameworks, apply them at the group or project level, and gain better visibility into adherence to internal policies.

GitLab Duo Integrates with Amazon Q: AI-Driven DevSecOps for AWS

Thu, 17 Apr 2025 02:00:00 +0200

Transforming DevSecOps with GitLab Duo and Amazon Q

GitLab has taken another leap forward in AI-powered software development by extending its GitLab Duo integration to include Amazon Q, an advanced agentic AI system designed for building on Amazon Web Services (AWS). This collaboration streamlines and automates key parts of the DevSecOps lifecycle, offering development teams faster and more reliable software delivery specifically optimised for the AWS environment.

Agentic AI Now Working Side-By-Side with Developers

GitLab Duo’s integration with Amazon Q brings a new level of intelligent automation to cloud-based development. Amazon Q, an AI assistant tailored to AWS, enables software teams to offload complex programming, testing, documentation, and cloud configuration tasks. Together with GitLab Duo, developers can now experience a seamless collaboration with AI agents across coding, merge request management, issue resolution, and security scanning—all within a single DevSecOps platform.

GitLab Rotates Omnibus Linux Package Signing Key for Enhanced Security

Wed, 16 Apr 2025 02:00:00 +0200

GitLab Announces New Omnibus Linux Package Signing Key

To enhance security and maintain the trust of its users, GitLab is rotating its Omnibus Linux package signing key. The current signing key that has been in use is set to expire in 2025, and the organisation is introducing a new key as part of its regular key rotation policy to ensure the continued integrity and authenticity of its distributed packages.

From April 22, 2025, GitLab Omnibus packages will be signed with a new signing key (4096R, fingerprint: EBF7 7FB9 51E9 5873 6A53 35E1 9B1A 7349 1FF7 4F43). This new key ensures all packages are cryptographically verified during installation, providing users with reliable and secure updates.

Celebrating 20 Years of Git: A Look Back at Its Transformative Journey

Mon, 14 Apr 2025 02:00:00 +0200

Git Turns 20: Celebrating Two Decades of Developer Empowerment

In April 2005, amidst a backdrop of evolving needs in the open-source community, Linus Torvalds created Git — a fast, distributed version control system designed to support the Linux kernel development. Twenty years later, Git has become the cornerstone of modern software development, used by millions of developers worldwide and embraced across industries.

Git’s success wasn’t just due to its technical brilliance, though features like branching, merging, and distributed workflows certainly played a huge role. It was also built with transparency and collaboration in mind, enabling developers to track history, experiment fearlessly, and contribute regardless of geographic location.

Transforming App Modernisation: GitLab at NEXT25

Fri, 11 Apr 2025 02:00:00 +0200

GitLab Showcases at NEXT25: Redefining Application Modernisation

At the recent NEXT25 event in Las Vegas, GitLab revealed its leading innovations in enterprise application modernisation, delivering keynote insights and product showcases that highlight the pivotal role of AI-powered DevSecOps in cloud transformation. In collaboration with Accenture and Google Cloud, GitLab underlined its commitment to helping organisations accelerate software innovation while enhancing security and efficiency.

Jon Askins, VP of Enterprise at GitLab, led a powerful breakout session discussing modernisation strategies across sectors. He detailed GitLab’s essential role in enabling the shift from legacy systems to modern cloud infrastructures, powered by a unified DevSecOps platform. Customers heard how GitLab’s secure software development lifecycle facilitates swift adaptation in today’s competitive digital economy.

Enhancing Application Quality Assurance with GitLab Duo Workflow

Thu, 10 Apr 2025 02:00:00 +0200

Boost Quality Assurance with GitLab Duo Workflow

Software quality assurance (QA) is critical for delivering robust, reliable applications. GitLab Duo Workflow offers a streamlined, AI-enhanced approach to modern QA processes by integrating intelligent tools directly into the developer lifecycle.

Intelligent Quality, Built In

With GitLab Duo, QA is no longer an isolated phase. It becomes an integral, collaborative part of every merge request. By introducing AI-assisted suggestions, code reviews, and test generation, GitLab Duo enables developers and QA teams to work in sync — accelerating feedback, reducing manual effort, and improving overall software quality.

GitLab 17.10.4 Patch Release: Bug Fixes and Stability Enhancements | IDEA GitLab Solutions

Wed, 09 Apr 2025 02:00:00 +0200

GitLab 17.10.4 Patch Release: Enhanced Stability and Critical Issue Resolutions

GitLab has officially released version 17.10.4, a vital patch update aimed at ensuring platform dependability and resolving several critical issues discovered in the previous release. This update is highly recommended for all GitLab instances to maintain optimal performance, security, and functionality.

This patch release addresses important bug fixes including:

Resolved a problem preventing push rule validations from triggering on tag deletions.
Fixed a Gitaly error that occurred during the deletion of large repositories, ensuring stability in repository management.
Corrected a CI/CD pipeline bug where job dependencies were inaccurately evaluated, improving pipeline accuracy.
Fixed an issue causing link rendering problems in Markdown content within GitLab UI.
Patched a vulnerability that impacted project issue filtering under specific access conditions.

GitLab continues its commitment to security and experience improvement by promptly addressing these user-reported issues. By applying this patch, users can avoid potential disruptions and maintain a secure DevSecOps workflow.

Boosting DevSecOps Visibility and Removing Silos with GitLab

Tue, 08 Apr 2025 02:00:00 +0200

Stay Safe Without Silos: Unified GitLab Security Visibility

As organisations adopt DevSecOps to bring development, security, and operations closer together, the increasing complexity of tools and data silos often limits the potential of this approach. GitLab addresses this issue by offering a single application for the entire software development lifecycle – and now it’s enhancing security visibility to help teams collaborate more efficiently.

GitLab’s updated Security section brings together diverse security findings into a unified, structured overview. This streamlined interface presents issues detected across Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Secret Detection, Dependency Scanning, Container Scanning, and Coverage Fuzzing. All findings are directly mapped to relevant areas in your project, providing contextual awareness and actionable insights.

Celebrating 20 Years of Git with Linus Torvalds

Mon, 07 Apr 2025 02:00:00 +0200

Celebrating 20 Years of Git: A Conversation with Creator Linus Torvalds

In April 2025, we commemorate a monumental milestone in the software development world — the 20th anniversary of Git. Introduced in 2005 by Linus Torvalds, Git has revolutionised version control systems and become the cornerstone of modern DevOps, with millions of developers and enterprises relying on it every day to build, collaborate, and innovate faster and more securely.

The GitLab team had the honour of speaking with Linus Torvalds himself to reflect on two decades of Git. Linus recalled how Git was born out of necessity when the Linux kernel community needed a reliable, distributed version control tool after the departure of their previous provider. With innovation at its core, Git was designed to be fast, scalable, and immutable — values that remain fundamental to its architecture today.

Enhance Application Security: GitLab and HackerOne Integration

Thu, 03 Apr 2025 02:00:00 +0200

Strengthening Application Security with GitLab and HackerOne

Building secure software is more important than ever, and proactive security is key. GitLab and HackerOne have joined forces to help organisations cultivate robust security practices at every stage of the software lifecycle. With this new collaboration, GitLab Ultimate customers now benefit from seamless access to HackerOne’s vulnerability disclosure programme (VDP) – right from within GitLab.

Security and development teams can now streamline workflows, identify vulnerabilities faster, and engage with the ethical hacker community more efficiently. Reports submitted by security researchers through HackerOne are automatically made visible directly in the GitLab UI, classified by severity, and integrated with GitLab security features such as issue tracking and merge request pipelines.

GitLab 17.10.3 Patch Released – Security and Stability Enhancements

Wed, 02 Apr 2025 02:00:00 +0200

GitLab 17.10.3 Patch Release Overview

GitLab has announced the release of version 17.10.3. This patch update addresses several key issues that enhance the platform’s stability, security, and performance. It is strongly recommended for all GitLab Community and Enterprise Edition users to update to this latest release as soon as possible.

Key corrections in this patch include fixing issues with group-level runner limitations, pipeline trigger token permissions, Stable Counter Cache inconsistencies, and errors with Kubernetes Agent server logs. The update also resolves a bug affecting container registry clean-up policies, enhances compatibility with PostgreSQL logical replication, rectifies inconsistencies in CI pipeline variable resolution, and addresses LDAP group sync behaviour inconsistencies.

GitLab 17.9.5 Patch Delivers Vital Fixes for Self-Managed Users

Wed, 02 Apr 2025 02:00:00 +0200

GitLab 17.9.5 Released: Stability and Security Updates

GitLab has announced the release of version 17.9.5, a critical patch update for users on the 17.9 release series. This version delivers important bug fixes and performance enhancements, elevating security and reliability across projects and deployments.

Included in 17.9.5 are fixes for several regressions, including an SVG sanitisation issue that impacted rendering in certain pipeline visualisations. The update also addresses problems with Kubernetes cluster connections and addresses inconsistencies with project export features, reinforcing data portability and integration stability.

GitLab Boosts Security with YubiKey Integration for Logins and Signed Commits

Wed, 02 Apr 2025 02:00:00 +0200

In today’s cybersecurity landscape, protecting developer identity and safeguarding project data have never been more critical. GitLab has partnered with Yubico to offer a robust solution to this challenge: YubiKey. This compact security device now enables end-to-end protection, from login to verified commit signing, using secure hardware-based authentication.

With this integration, GitLab users can log in securely using FIDO2/WebAuthn authentication via their YubiKey device. Once inside, developers can also sign their Git commits using GPG or SSH keys generated and stored on the hardware token. This ensures that every contribution is cryptographically verifiable and traceable to a specific, authorised person.

Enhancing Data Security with Custom PII Detection Rulesets in GitLab

Tue, 01 Apr 2025 02:00:00 +0200

Enhancing Data Security with Custom PII Detection Rulesets in GitLab

In today’s data-driven development landscape, protecting sensitive information is more critical than ever. GitLab has introduced the ability to define custom rulesets for detecting Personally Identifiable Information (PII), offering teams a more tailored and powerful way to enhance data security across their DevSecOps pipelines.

Out of the box, GitLab already provides intelligent PII detection, but not all organisations have the same compliance requirements or the same types of sensitive data to manage. With this new functionality, available through GitLab’s Data Classification and Protection features, teams can now create their own rulesets to scan for specific patterns relevant to their unique security needs.

GitLab Improves OAuth ROPC Security Practices

Tue, 01 Apr 2025 02:00:00 +0200

Enhancing OAuth ROPC Security on GitLab.com

In an effort to further protect users and improve authentication security, GitLab.com has updated the use of the OAuth 2.0 Resource Owner Password Credentials (ROPC) grant. Beginning from 15 May 2025, ROPC grant flows will be disabled by default for newly created applications. This step aligns GitLab with industry best practices and significantly reduces the attack surface associated with sensitive user credentials.

The ROPC flow is generally discouraged due to its inherent risks — primarily because it requires users to share their passwords directly with clients. While GitLab previously allowed ROPC for specific trusted use cases such as CI systems, misuse potential remains a critical concern. Existing applications that currently use ROPC can continue to do so unless manually disabled or GitLab enforces policy changes later.

GitLab 17.10.1 Patch Release - Security and Stability Improvements

Wed, 26 Mar 2025 01:00:00 +0100

GitLab 17.10.1 Patch Release Now Available

We are pleased to announce the release of GitLab 17.10.1, which includes critical security and bug fixes to ensure the stability and security of your GitLab instance. This release is recommended for all users to maintain an optimal and secure development workflow.

Key Fixes and Improvements

Security Enhancements: Resolves vulnerabilities, strengthening the protection of your repositories and data.
Bug Fixes: Addresses reported issues to improve system reliability and performance.
Performance Optimisations: Enhancements to streamline GitLab operations, offering a smoother user experience.

To ensure you remain on a secure and stable version, we strongly advise upgrading to GitLab 17.10.1 as soon as possible. For further details on this release, including update instructions, please refer to the official GitLab release notes.

More Granular Product Usage Insights for GitLab Self-Managed and Dedicated

Wed, 26 Mar 2025 01:00:00 +0100

Enhanced Product Usage Insights for GitLab Self-Managed and Dedicated

GitLab is introducing more granular product usage insights for Self-Managed and Dedicated environments, offering organisations improved monitoring and analysis capabilities. These enhanced insights empower teams with a deeper understanding of feature utilisation, aiding in better decision-making and optimised resource allocation.

With this update, GitLab administrators gain access to detailed analytics that provide clarity on how different features are being used within their instance. This transparency helps enterprises measure the value delivered by GitLab and identify opportunities for further adoption or training.

Secure BigQuery Data Publishing with GitLab

Tue, 25 Mar 2025 01:00:00 +0100

Secure BigQuery Data Publishing with GitLab

As data-driven decisions become more critical, ensuring the security and efficiency of data publishing processes is paramount. This article explores how GitLab can be used to automate and secure the publication of data into Google BigQuery.

Why Secure Data Publishing Matters

BigQuery is a powerful data warehouse solution, but improper data handling could expose sensitive information. By integrating GitLab CI/CD pipelines, you can enforce governance, access control, and automation.

Prepare Now: Docker Hub Rate Limits Will Impact GitLab CI/CD

Mon, 24 Mar 2025 01:00:00 +0100

Get Ready: Docker Hub Rate Limits Impact Your GitLab CI/CD

Starting soon, Docker Hub’s rate limits will significantly affect your GitLab CI/CD pipelines. If you frequently pull images from Docker Hub, you may experience disruptions unless you take immediate action.

What Are Docker Hub’s Rate Limits?

Docker Hub has implemented rate limits based on the type of account. Anonymous users are restricted to 100 pulls per six hours, while authenticated (free-tier) users are limited to 200 pulls in the same timeframe. This change can have major consequences for GitLab pipelines that depend on public Docker Hub images.

GitLab 17.10 Released – Enhancements & New Features

Thu, 20 Mar 2025 01:00:00 +0100

GitLab 17.10 Released: New Enhancements and Features

The latest GitLab 17.10 release introduces powerful improvements to security, automation, and collaboration, ensuring a smoother DevSecOps experience.

Security and Compliance Enhancements

GitLab 17.10 enhances security with more robust vulnerability scanning, expanded compliance management features, and improved audit logs for better traceability in enterprise environments.

Advanced Automation and AI Integration

New CI/CD automation features help streamline development workflows, while AI-driven code suggestions improve coding efficiency and reduce manual errors, accelerating software development.

Self-Service Security Alert Handling with GitLab's UAM

Tue, 18 Mar 2025 01:00:00 +0100

Enhancing Security with GitLab’s Self-Service Alert Handling

Modern DevSecOps teams require streamlined security alert management to maintain efficiency. GitLab’s User Access Management (UAM) introduces a self-service approach to handling security alerts, providing developers with the autonomy to address and resolve issues swiftly while maintaining compliance.

Empowering Developers with Self-Service

Security alerts traditionally rely on central security teams for resolution, potentially causing bottlenecks. With GitLab’s UAM, engineers can directly access alerts, reducing remediation time and fostering a culture of shared responsibility.

GitLab Achieves PCI DSS Attestation of Compliance

Mon, 17 Mar 2025 01:00:00 +0100

GitLab Achieves PCI DSS Attestation of Compliance

GitLab is proud to announce that it has successfully achieved the Payment Card Industry Data Security Standard (PCI DSS) Attestation of Compliance (AoC). This significant milestone underscores GitLab’s commitment to ensuring the highest level of security for organisations that manage payment-related data within their DevSecOps workflows.

PCI DSS is a globally recognised security standard designed to protect cardholder data from breaches and fraud. By meeting these stringent security requirements, GitLab provides businesses with greater confidence in their security posture while fostering regulatory compliance.

Git 2.49.0: Key Enhancements and New Features

Fri, 14 Mar 2025 01:00:00 +0100

New Features and Improvements in Git 2.49.0

The latest Git release, version 2.49.0, introduces a range of enhancements aimed at improving developer workflow and performance. This update brings notable changes in usability, security, and performance optimisations, ensuring a smoother experience for teams relying on Git for version control.

Improved Garbage Collection

Git 2.49.0 enhances garbage collection, making repository maintenance more efficient. The updated behaviour optimises cleanup operations, leading to faster execution and reduced storage consumption.

Automating Agile Workflows with the GitLab Triage Gem

Thu, 13 Mar 2025 01:00:00 +0100

Automating Agile Workflows with the GitLab Triage Gem

Managing incoming issues efficiently is a crucial part of any Agile development workflow. With increasing complexity in team projects, automating triage tasks can help teams stay organised and focus on delivering value. GitLab introduces the Triage Gem, an automation tool designed to handle issue management systematically.

The GitLab Triage Gem enables engineers and project managers to set up automated rules for labelling, assigning, and prioritising incoming issues. By implementing automation, teams can reduce manual intervention and ensure a structured workflow.

GitLab 17.9.2 Patch Release - Security and Stability Updates

Wed, 12 Mar 2025 01:00:00 +0100

GitLab 17.9.2 Patch Release Now Available

We are pleased to announce the release of GitLab 17.9.2, bringing important security updates and bug fixes to enhance the stability of your GitLab instance. This release addresses vulnerabilities identified in previous versions and improves performance.

If you are using GitLab 17.9.1 or earlier, we highly recommend upgrading as soon as possible to maintain security and efficiency. Patch releases ensure that your GitLab environment remains robust and secure.

Vulnerability Risk Prioritisation Made Simple with GitLab

Wed, 12 Mar 2025 01:00:00 +0100

Vulnerability Risk Prioritisation Made Simple with GitLab

Security teams often face challenges in managing vulnerabilities efficiently. GitLab now introduces a streamlined way to prioritise risk, helping you focus on the most critical threats first. With a data-driven approach, teams can assess vulnerabilities based on severity, exploitability, and impact on business operations.

GitLab’s security dashboard provides clear visual insights and assigns risk scores, reducing the complexity of identifying urgent issues. Additionally, automated workflows ensure faster remediation, decreasing exposure time.

GitLab UI Improvements and Enhanced Deployment Experience

Thu, 06 Mar 2025 01:00:00 +0100

Enhancing GitLab’s UI and Deployment Experience

GitLab continues to evolve, bringing a more polished UI and a smoother deployment experience. The latest updates focus on improving clarity, efficiency, and ease of use, ensuring that teams can collaborate seamlessly.

A Refined User Interface

The new UI enhancements provide a more visually cohesive and intuitive experience. Key updates include refined spacing, improved colour contrasts, and clearer navigation elements. These changes help users quickly find what they need, reducing friction in daily workflows.

GitLab Measures Red Team Impact with the Adoption Rate Metric

Wed, 05 Mar 2025 01:00:00 +0100

Measuring Red Team Impact with the Adoption Rate Metric

At GitLab, security is a top priority, and our Red Team plays a crucial role in identifying vulnerabilities across our platform. But measuring the impact of security initiatives is often challenging. To enhance visibility into how well security recommendations are implemented, GitLab uses a key performance metric called the Adoption Rate.

The Adoption Rate metric evaluates how often security improvements suggested by Red Team exercises are actually adopted by development and security teams. This approach ensures that findings are not just reported but also lead to meaningful enhancements in security posture. By tracking adoption over time, GitLab gains insights into the effectiveness of its Red Team and fosters a culture of continuous security improvement.

Introducing GitLab's Open Source Security Hub

Tue, 04 Mar 2025 01:00:00 +0100

Introducing GitLab’s Open Source Security Hub

Ensuring the security of open-source software is a critical challenge for developers and organisations alike. GitLab is committed to addressing this issue with the introduction of the Open Source Security Hub, an innovative platform designed to enhance collaboration and improve security across open-source projects.

The Open Source Security Hub provides developers with centralised access to security resources, best practices, and automation tools. With a strong focus on transparency and shared responsibility, the hub enables security professionals to contribute their expertise, helping open-source maintainers identify and mitigate vulnerabilities more effectively.

The GitLab AI Security Framework for Security Leaders

Tue, 04 Mar 2025 01:00:00 +0100

Enhancing Security with GitLab’s AI Security Framework

As artificial intelligence (AI) continues to advance, security leaders face new challenges in safeguarding their software development pipeline. GitLab has introduced an AI Security Framework designed to help organisations mitigate emerging security risks while leveraging the power of AI-driven DevSecOps.

AI-Driven Security Challenges

The integration of AI in software development can introduce vulnerabilities through automated code generation, dependency management, and data exposure. Security leaders need a comprehensive approach to ensure AI-enhanced development workflows remain secure from malicious threats.

Build a New Website in Just a Few Steps with GitLab Pages

Mon, 03 Mar 2025 01:00:00 +0100

Effortlessly Build a Website with GitLab Pages

Creating a website has never been easier, thanks to GitLab Pages. Whether you’re a developer, a business owner, or simply looking to showcase your portfolio, GitLab Pages provides a streamlined approach to hosting and managing a website directly from your GitLab repository.

Why Choose GitLab Pages?

With full integration into the GitLab DevSecOps platform, GitLab Pages allows you to deploy static websites with ease. Benefit from complete CI/CD automation, custom domain support, and free SSL certificates for secure hosting. What’s more, no additional infrastructure is needed—your site is built and hosted directly within GitLab.

Build and Run Containers in Remote Development Workspaces

Mon, 03 Mar 2025 01:00:00 +0100

Build and Run Containers in Remote Development Workspaces

Developing applications within remote workspaces has become an essential practice for modern DevOps. GitLab now offers an improved way to build and run containers directly within remote development environments, simplifying workflows and ensuring consistency across teams.

Enhanced Remote Development

With this new capability, developers can seamlessly work with containers in cloud-hosted environments. The integration allows for faster iteration, reduced local resource usage, and eliminates issues that arise from differing local setups.

GitLab 17.9.1 Patch Release Now Available

Thu, 27 Feb 2025 01:00:00 +0100

GitLab 17.9.1 Patch Release is Now Available

The latest GitLab patch update, version 17.9.1, has been officially released, addressing key security issues and bug fixes to enhance platform stability and performance. This update includes critical patches, ensuring that users benefit from a secure and reliable DevSecOps environment.

As with all GitLab patch releases, upgrading to version 17.9.1 is strongly recommended to maintain the best security standards and optimal functionality. For users in the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, North Macedonia, the United Kingdom, and beyond, IDEA GitLab Solutions provides expert consulting and licensing services to assist with your upgrade process.

GitLab Duo: Self-Hosted Enterprise AI Built for Data Privacy

Thu, 27 Feb 2025 01:00:00 +0100

Introducing GitLab Duo: Enterprise AI with Self-Hosted Privacy

GitLab has unveiled GitLab Duo, a cutting-edge AI solution designed specifically for enterprises seeking robust AI capabilities while maintaining full control over their data. This self-hosted AI tool ensures complete data privacy, enabling organisations to leverage AI-driven workflows without compromising sensitive information.

Unlike cloud-based AI tools that require external data processing, GitLab Duo operates entirely within your infrastructure. This means your intellectual property, proprietary code, and business-critical information remain secure and under your governance. By integrating AI-assisted coding, automation, and workflow enhancements directly into GitLab’s DevSecOps platform, teams can significantly accelerate development cycles and improve software quality.

Quickly Set Up a Workspace with GitLab's Default Devfile

Thu, 27 Feb 2025 01:00:00 +0100

Quickly Set Up a Workspace with GitLab’s Default Devfile

Setting up a development workspace can often be time-consuming, requiring installation, configuration, and dependency management. GitLab simplifies this process with its Default Devfile, allowing developers to launch a ready-to-use development environment effortlessly.

Devfiles are YAML-based configuration files used to define cloud-native development environments. With GitLab’s Default Devfile, users can quickly spin up a preconfigured workspace without manual setup, improving efficiency and reducing onboarding times.

GitLab 17.9.1 Patch Release Now Available

Wed, 26 Feb 2025 01:00:00 +0100

GitLab 17.9.1 Patch Release Now Available

The latest patch release, GitLab 17.9.1, is now available, providing critical updates and security fixes to enhance stability and security.

This release addresses key bug fixes and ensures a smoother development workflow for users. As with all GitLab updates, upgrading is recommended to maintain optimal performance and protection against potential vulnerabilities.

For enterprises looking for professional guidance, licensing, or consultation on GitLab, our team at IDEA GitLab Solutions is ready to assist. We proudly serve the UK, Czech Republic, Slovakia, Croatia, Serbia, Slovenia, Macedonia, South Africa, Israel, and Paraguay.

The Ultimate Guide to Token Management at GitLab

Tue, 25 Feb 2025 01:00:00 +0100

Mastering Token Management in GitLab

Efficient token management is crucial for security and automation in GitLab. This guide delves into best practices, types of tokens, and strategies for keeping access secure.

Understanding Token Types

GitLab provides various token types, including Personal Access Tokens (PATs), Deploy Tokens, and CI/CD Job Tokens. Each serves a distinct purpose, ensuring fine-grained access control.

Best Practices for Security

To enhance security, limit token scope and expiry. Regularly rotate credentials and monitor usage with GitLab’s built-in auditing tools.

GitLab Duo Workflow: Enterprise Visibility and Control for Agentic AI

Mon, 24 Feb 2025 01:00:00 +0100

Enhancing AI Workflows with GitLab Duo

GitLab Duo introduces a revolutionary approach to integrating agentic AI within enterprise workflows, ensuring full visibility and control over automated processes. As AI continues to evolve, enterprises require structured mechanisms to manage AI-driven actions securely and efficiently.

Comprehensive Oversight

GitLab Duo Workflow empowers organisations by providing an auditable framework for AI-generated contributions. It enables automated tasks while maintaining accountability, helping teams track changes and review AI-assisted development.

GitLab 17.9 Released: Latest Features & Enhancements

Thu, 20 Feb 2025 01:00:00 +0100

GitLab 17.9 Released: New Features and Enhancements

GitLab 17.9 is here, bringing a host of powerful improvements to streamline your DevSecOps workflows. This latest release introduces enhanced security scanning, refined AI-powered code suggestions, and better automation tools to increase efficiency.

Key highlights include:

Advanced security features: Strengthened scanning capabilities help detect vulnerabilities earlier in your development process.
AI-powered code suggestions: Improved machine learning models offer even more accurate and useful suggestions.
Enhanced automation: Expanded CI/CD functionalities simplify software delivery and reduce deployment risks.
Performance optimisations: Faster repository operations and improved UI responsiveness boost overall user experience.

Upgrade today to take advantage of these innovations and optimise your DevSecOps pipeline. Need expert assistance? Contact our professional GitLab consultants for licensing, support, and advice in the UK, Czech Republic, Slovakia, Croatia, Serbia, Slovenia, North Macedonia, Israel, South Africa, and Paraguay.

How GitLab Reduced MR Review Time with Value Stream Management

Thu, 20 Feb 2025 01:00:00 +0100

Enhancing Merge Request Review Efficiency with Value Stream Management

At GitLab, we are constantly striving to improve our development workflows. One area we identified for optimisation was our Merge Request (MR) review time. By implementing Value Stream Management (VSM), we significantly reduced the time bottlenecks that delayed code reviews and deliveries.

VSM provides deep visibility into the different stages of the development cycle, allowing us to analyse inefficiencies and remove unnecessary delays. By leveraging data-driven insights, we identified critical blockers in our MR pipeline and introduced process improvements to streamline the flow of work.

How to Use OCI Images as the Source of Truth for Continuous Delivery

Wed, 19 Feb 2025 01:00:00 +0100

Using OCI Images as the Source of Truth for Continuous Delivery

Modern software development requires a reliable and efficient continuous delivery (CD) process. Open Container Initiative (OCI) images are emerging as a fundamental element in this workflow, providing consistency and security when deploying applications.

What Are OCI Images?

OCI images are standardised container images maintained under the Open Container Initiative, ensuring interoperability across different platforms and environments. Using them as an authoritative source in your CD pipeline means that deployments remain consistent, regardless of the target system.

Structuring GitLab’s Package Registry for Enterprise Scale

Wed, 19 Feb 2025 01:00:00 +0100

Optimising GitLab’s Package Registry for Enterprise Growth

Managing software packages efficiently is crucial for enterprise-scale development. GitLab’s Package Registry is designed to streamline this process, offering a centralised location for storing and sharing project dependencies. With support for multiple package formats, it eliminates the need for external registries, simplifying dependency management and enhancing security.

One key improvement is better scalability. Enterprises dealing with substantial volumes of package data require a system that can handle growth seamlessly. GitLab has restructured its Package Registry to accommodate larger datasets while maintaining performance.

GitLab to Sunset Certificate-Based Kubernetes Integration on GitLab.com

Mon, 17 Feb 2025 01:00:00 +0100

Certificate-Based Kubernetes Integration Sunsetting on GitLab.com

GitLab has announced the deprecation and eventual removal of its certificate-based Kubernetes integration on GitLab.com. This decision aligns with GitLab’s move toward more secure and scalable solutions, including the agent-based Kubernetes integration, which offers enhanced security and reliability.

The certificate-based integration will be removed in GitLab 17.0, scheduled for May 2025. Users relying on this integration are strongly encouraged to migrate to the GitLab Kubernetes Agent (KAS) well in advance to avoid disruptions. KAS provides a more robust and actively maintained connection between GitLab and Kubernetes clusters.

Automating Container Image Migration from Amazon ECR to GitLab

Thu, 13 Feb 2025 01:00:00 +0100

Automating Container Image Migration from Amazon ECR to GitLab

Managing container images efficiently is vital for modern DevOps workflows. If you’re using Amazon Elastic Container Registry (ECR) but want to migrate to GitLab’s integrated container registry, automation can simplify the process. In this guide, we’ll explore how to streamline image migration using GitLab CI/CD.

Why Migrate to GitLab?

GitLab provides a seamless and secure container registry directly integrated with your repositories. This eliminates dependencies on external registries, enhances security, and simplifies pipeline configurations.

GitLab 17.8.2 Patch Release – Security and Bug Fixes

Wed, 12 Feb 2025 01:00:00 +0100

GitLab 17.8.2 Patch Release Now Available

The latest GitLab patch release, version 17.8.2, is now available with critical security and bug fixes to enhance the stability and security of your GitLab environment.

This update addresses important issues aimed at improving performance and reliability, ensuring a smoother development workflow. We highly recommend upgrading at your earliest convenience to take advantage of the latest fixes.

If you need assistance with upgrading or optimising your GitLab setup, our team at IDEA GitLab Solutions is ready to support you. We provide expert consulting and licensing services across the United Kingdom, Czech Republic, Slovakia, Croatia, Serbia, Slovenia, North Macedonia, and beyond.

Getting Started with GitLab: Mastering Project Management

Tue, 11 Feb 2025 01:00:00 +0100

Mastering Project Management with GitLab

Effective project management is crucial for success, and GitLab offers a comprehensive suite of tools to help teams collaborate seamlessly. From issue tracking to CI/CD automation, GitLab simplifies workflows and increases efficiency.

Getting Started with GitLab

Begin by creating a project in GitLab. Use the built-in Issue Tracker to define tasks, assign team members, and set deadlines. Leveraging labels and milestones allows better organisation and tracking of progress.

How to Scan a Full Commit History to Detect Sensitive Secrets

Thu, 06 Feb 2025 01:00:00 +0100

Scanning Full Commit History for Sensitive Secrets

In today’s software development landscape, protecting sensitive information is paramount. Sensitive data, such as API keys, passwords, and confidential credentials, can unintentionally be committed to a repository. Identifying and removing these secrets from a Git repository’s full commit history is essential for maintaining security.

Using GitLab’s robust security tools, you can efficiently scan commit history for exposed secrets. Leveraging GitLab’s Secret Detection and open-source solutions like gitleaks, development teams can ensure their code remains secure, even retrospectively.

GitLab Security Scanning in Air-Gapped Environments

Wed, 05 Feb 2025 01:00:00 +0100

Security Scanning in Air-Gapped Environments

Ensuring security in air-gapped environments presents unique challenges, particularly when implementing security scanning without external network access. GitLab provides robust solutions for organisations requiring strict isolation, enabling them to conduct security scans effectively.

Why Air-Gapped Security Scanning Matters

Air-gapped environments are critical in industries such as defence, finance, and healthcare, where data must remain isolated to prevent cyber threats. However, maintaining security in these setups requires tailored solutions that allow for vulnerability scanning, dependency checks, and compliance monitoring without internet access.

How to Harmonise Agile Sprints with Product Roadmaps

Tue, 04 Feb 2025 01:00:00 +0100

Harmonising Agile Sprints with Product Roadmaps

Success in modern software development often hinges on effectively aligning short-term agile sprints with long-term product roadmaps. Many organisations struggle to merge their developers’ rapid iteration cycles with the strategic goals mapped out by product managers. This article examines key strategies for achieving harmony between these two essential aspects of the development lifecycle.

The Challenge

Agile sprints focus on delivering functional increments within short time frames, often ranging from one to four weeks. Meanwhile, product roadmaps encapsulate a broader vision, often spanning months or years. Misalignment can lead to missed deadlines, unmet expectations, and wasted resources.

Protecting Customers with GitLab's Prompt Guardrails

Thu, 30 Jan 2025 01:00:00 +0100

Enhancing AI Safety with Prompt Guardrails in GitLab

The rise of AI has brought about remarkable opportunities but also challenges related to its responsible usage. At GitLab, we’re committed to ensuring our platform not only accelerates innovation but also protects our users. That’s why we’ve introduced prompt guardrails—a set of safeguards designed to promote responsible and effective use of AI within the GitLab ecosystem.

Prompt guardrails serve as proactive mechanisms that reduce the risk of generating inappropriate or irrelevant outcomes. Through structured prompts and AI training methodologies, we ensure that the AI systems respond sensibly within predefined parameters, maintaining user trust and operational integrity.

The Co-Create Program: How Customers Are Collaborating to Build GitLab

Thu, 30 Jan 2025 01:00:00 +0100

Introducing the Co-Create Program: Building GitLab, Together

GitLab has always strived to be at the forefront of innovation, fostering collaboration not just within teams but also with its expansive customer base. The launch of the Co-Create Program takes this collaboration to a whole new level, opening the doors for customers to actively participate in shaping GitLab’s future tools and features.

The Co-Create Program invites GitLab’s customers to partner directly with the GitLab team in the product development process. This programme not only strengthens the relationship between GitLab and its customers but ensures the platform evolves in alignment with real-world needs and workflows. Whether it’s co-developing new features, brainstorming concepts, or testing early prototypes, participants contribute to making GitLab a better solution for all.

Automating Cybersecurity Threat Detection with GitLab CI/CD

Wed, 29 Jan 2025 01:00:00 +0100

Automating Cybersecurity Threat Detection with GitLab CI/CD

Cybersecurity remains a top priority for organisations worldwide, and the ability to identify and mitigate threats swiftly is more critical than ever. With GitLab CI/CD, businesses can now seamlessly integrate automated threat detection into their workflows, enhancing security while maintaining efficiency.

GitLab CI/CD provides a versatile platform for automating the continuous delivery pipeline. By incorporating security checks into the development process, teams can detect vulnerabilities early, reducing exposure to potential breaches. Automated testing tools such as static application security testing (SAST) and dependency scanning can be directly implemented, ensuring code integrity and compliance with security protocols as part of the pipeline.

Enhance AI Security with Composite Identities in GitLab

Wed, 29 Jan 2025 01:00:00 +0100

Enhancing AI Security in GitLab with Composite Identities

As the integration of AI into development workflows becomes increasingly common, the need to secure its operations has grown significantly. GitLab has introduced a groundbreaking feature called Composite Identities to address this challenge. This functionality allows teams to manage AI system integration more securely while maintaining efficiency.

Composite Identities enable seamless collaboration between human and machine contributors by assigning a unique, identifiable entity to AI systems. This approach allows for better tracking, auditing, and management of automated contributions within projects, enhancing security and accountability.

Improve Security Auditing with GitLab Operational Container Scanning

Wed, 29 Jan 2025 01:00:00 +0100

Enhance Your DevSecOps with GitLab Operational Container Scanning

Security remains a critical concern for teams building and releasing software via containers. GitLab introduces the Operational Container Scanning (OCS) feature, a game-changer for identifying runtime vulnerabilities in running containerised applications. Unlike static scanning methods, OCS enables teams to detect and mitigate vulnerabilities post-deployment, offering deep security insights into live environments.

Container security is crucial as vulnerabilities discovered too late can compromise critical systems and user data. Operational Container Scanning complements GitLab’s pre-existing container scanning capabilities by extending security checks to runtime. The feature monitors containers post-deployment to detect signs of exploitation or unpatched vulnerabilities, making it a vital addition to your DevSecOps workflow.

Deploy a Server Using Go with GitLab and Google Cloud

Tue, 28 Jan 2025 01:00:00 +0100

Deploying a Server with Go, GitLab, and Google Cloud

Modern software development offers numerous tools and platforms to simplify and streamline workflows. Today, we’ll explore how to deploy a server using Go programming language, GitLab CI/CD, and Google Cloud. This powerful combination enables seamless automation and scalability for projects of any size.

Why Go Language? Go is a statically typed, compiled language known for its simplicity, efficiency, and reliability. Ideal for cloud-based applications and server-side programming, Go is the perfect choice for developers looking to develop scalable backend solutions.

From Code to Production: A Guide to Continuous Deployment with GitLab

Tue, 28 Jan 2025 01:00:00 +0100

A Comprehensive Guide to Continuous Deployment with GitLab

Embracing modern development processes, continuous deployment (CD) has become an essential factor in delivering high-quality software efficiently. GitLab, a comprehensive DevSecOps platform, empowers teams to manage their entire development lifecycle seamlessly.

Understanding Continuous Deployment: Continuous Deployment automates the release process, deploying changes to production as soon as they pass all predefined tests. This ensures faster delivery and enables teams to achieve a higher level of agility.

Getting Started with GitLab: How to Import Your Projects

Tue, 28 Jan 2025 01:00:00 +0100

Import Projects to GitLab: A Beginner’s Guide

Are you ready to simplify your development workflow? GitLab makes it easy to import your projects from various sources like GitHub, Bitbucket, and more. By centralising your code in GitLab, you can take full advantage of its comprehensive DevOps capabilities, ensuring seamless collaboration and powerful integrations. This guide walks you through the primary steps involved in importing your projects to GitLab.

Why Import to GitLab?

GitLab is an all-in-one DevSecOps platform that supports every stage of software development. Importing your projects to GitLab streamlines your team’s workflow by incorporating features such as version control, CI/CD pipelines, and monitoring tools all in one place. Additionally, you gain better control over security and compliance.

Secure, Compliant, and AI-powered: Get to Know 3 New GitLab Features

Mon, 27 Jan 2025 01:00:00 +0100

Discover 3 Exciting GitLab Features: Secure, Compliant, and AI-powered

In its continuous commitment to innovation, GitLab has introduced three remarkable new features that redefine modern DevOps. These updates not only enhance security and compliance but also integrate cutting-edge AI tools to elevate your development experience.

1. Enhanced Security at Scale

Security has always been a priority for GitLab, and the latest features double down on that. With improved vulnerability management and automated risk assessments, teams can now detect and address potential threats more effectively. All this is designed to scale securely, regardless of team size or industry.

Hosted Runners for GitLab Dedicated Now in Limited Availability

Thu, 23 Jan 2025 01:00:00 +0100

GitLab Hosted Runners for Dedicated Now in Limited Availability

Exciting news for DevOps teams using GitLab Dedicated! The new hosted runners feature is now available in a limited capacity, offering businesses an optimised way to handle their CI/CD workflows. Designed exclusively for GitLab Dedicated customers, hosted runners simplify pipeline execution and eliminate the complexity of managing self-hosted runner infrastructure. This enhancement promises to increase efficiency and scalability for organisations looking to maximise their DevOps operations.

How to Implement GitLab Single Sign-On with SAML, SCIM, and Azure's Entra ID

Thu, 23 Jan 2025 01:00:00 +0100

Streamlining Access: GitLab Single Sign-On with SAML, SCIM, and Azure’s Entra ID

Managing user authentication across enterprise services can be a complex task. Streamlined access, enhanced security, and reduced administrative overhead are key goals for organisations of any size. That’s why GitLab offers seamless integration with Azure’s Entra ID using SAML (Security Assertion Markup Language) and SCIM (System for Cross-domain Identity Management). This method not only simplifies user provisioning and Single Sign-On (SSO) but also enhances access control across your teams.

A Guide to Fulfilling SOC 2 Security Requirements with GitLab

Wed, 22 Jan 2025 01:00:00 +0100

How GitLab Helps You Meet SOC 2 Security Requirements

For organisations striving to enhance trust and meet compliance standards, SOC 2 represents a critical framework that governs the handling of customer data. With its emphasis on security, availability, processing integrity, confidentiality, and privacy, SOC 2 has become a cornerstone for businesses in industries like technology and cloud computing. Fortunately, GitLab offers robust tools to help your company fulfil these requirements efficiently.

Advanced Use Case for GitLab Pipeline Execution Policies

Wed, 22 Jan 2025 01:00:00 +0100

Mastering Advanced Pipeline Execution Policies in GitLab

GitLab continues to innovate, enabling teams to develop, secure, and operate software at an accelerated pace. One such powerful feature is Pipeline Execution Policies, allowing you to define intricate rules and conditions for triggering CI/CD pipelines. Whether you’re enhancing collaboration across teams or integrating custom workflows, these advanced execution strategies are an invaluable tool for maintaining efficiency and security.

Using policies to govern pipeline execution ensures consistency in development practices and enables better auditability. A common use case includes implementing conditional pipelines for different branches or enforcing specific compliance processes for critical feature rollouts. Furthermore, this flexibility lets organisations establish workflows aligned with their operational needs seamlessly.

GitLab 17.8.1 Patch Release: Enhancing Stability and Security

Wed, 22 Jan 2025 01:00:00 +0100

Important Update: GitLab 17.8.1 Patch Release

On 22nd January 2025, we introduced a patch release for GitLab 17.8, version 17.8.1. This update focuses on addressing critical issues and enhancing reliability. We recommend upgrading immediately to ensure optimal performance and security.

Noteworthy Fixes: The release resolves an issue related to code accessibility permissions, ensuring tighter security for teams. Furthermore, minor bugs affecting performance in specific edge cases have been addressed.

Key Notes for Users: GitLab consistently aims to maintain a seamless experience for teams of all sizes. This patch represents another step forward in fostering both platform stability and user satisfaction. As always, users are encouraged to check their systems and apply updates promptly.

Introducing GitLab Advanced Vulnerability Tracking

Tue, 21 Jan 2025 01:00:00 +0100

Enhancing Your Security with GitLab’s Advanced Vulnerability Tracking

GitLab has introduced an exciting new feature: Advanced Vulnerability Tracking. This innovation redefines how teams can manage and mitigate security vulnerabilities across their projects. By providing robust tracking and management tools, GitLab equips users with the ability to maintain a proactive stance on security.

The Advanced Vulnerability Tracking system ensures that vulnerabilities are seamlessly tracked, even as code evolves. This means that when code is moved, refactored, or adjusted, associated vulnerabilities will stay linked, ensuring consistent monitoring. Additionally, it simplifies collaboration between developers and security professionals, fostering greater communication and accountability.

Secure and Publish Python Packages: A Guide to CI Integration

Tue, 21 Jan 2025 01:00:00 +0100

Streamline Your Python Package Publishing with CI Integration

Efficiently managing and publishing Python packages is essential for developers looking to streamline their workflows. GitLab’s Continuous Integration (CI) system offers a seamless way to secure and distribute your packages, enhancing both productivity and security.

By integrating with GitLab’s robust CI/CD pipelines, you can automate the testing and publishing of your packages to popular repositories like PyPI, whilst ensuring the process adheres to best practices. This guide outlines the key steps to configure your GitLab CI/CD pipelines for Python package development and publication, helping you achieve reliable deployments.

Agentic AI Now Available on GitLab Self-Managed Ultimate on AWS

Thu, 16 Jan 2025 01:00:00 +0100

Revolutionise DevSecOps with Agentic AI on GitLab Ultimate

The GitLab team has ushered in a new era of DevSecOps efficiency and innovation with the introduction of Agentic AI, now available on GitLab Self-Managed Ultimate, specifically on AWS. For teams and organisations striving for top-tier security, streamlined operations, and intelligent automation, this is a major milestone.

Agentic AI brings advanced artificial intelligence capabilities to your GitLab environment, offering automated vulnerability detection, intelligent remediation suggestions, and real-time security insights. With its integration on AWS, organisations can take advantage of an optimised, scalable infrastructure while maintaining full control over their software development lifecycle. This tool empowers development, security, and operations teams to collaborate more effectively, reduce human error, and release secure software faster.

GitLab 17.8 Released - New Features and Updates

Thu, 16 Jan 2025 01:00:00 +0100

Explore the Cutting-Edge Features of GitLab 17.8

The latest release of GitLab, version 17.8, introduces a robust suite of features aimed at enhancing your software development and collaboration experience. This update continues GitLab’s commitment to empowering development teams with unparalleled visibility, collaboration, and automation tools.

Highlights of GitLab 17.8

Enhanced Dependency Scanning: Target vulnerabilities more effectively with updated dependency scanning capabilities that improve accuracy and support for broader ecosystems.
Advanced Code Review: Collaborate more seamlessly through configurable code review rules that standardise and streamline approval processes across your team.
Pipeline Optimisation Features: New features allow for more granular control of CI/CD pipelines, enabling faster builds and more efficient workflows.
Expanded Compliance Tools: Strengthen your organisation’s adherence to security and regulatory standards with enhanced compliance controls.

Why Upgrade to GitLab 17.8?

By adopting GitLab 17.8, your team can benefit from key improvements in efficiency, security, and developer experience, ensuring you remain ahead in the competitive development landscape. IDEA GitLab Solutions can guide you through these updates, offering expert consulting services and official GitLab licences. Whether you’re in the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the UK, or remotely in Israel, South Africa, or Paraguay, we’re here to help you maximise your software delivery workflows. Learn more and contact us here.

GitLab 17.7.2 Released: Security and Stability Updates

Wed, 15 Jan 2025 01:00:00 +0100

GitLab 17.7.2 Released: Enhanced Security and Stability Updates

The latest patch for GitLab, version 17.7.2, is now available, focusing on critical security enhancements and bug fixes to ensure optimal performance for your DevOps workflows. This minor release underscores GitLab’s commitment to offering a reliable and secure platform for developers across industries.

Key Updates in GitLab 17.7.2:

Security Patches: Multiple vulnerabilities have been addressed, fortifying the platform’s defences against potential threats.
Bug Fixes: This release includes crucial fixes to boost stability and smoothen the user experience.
Strong Recommendation: Users are encouraged to update to 17.7.2 as soon as possible to ensure their environments remain safe and effective.

As a Select Partner of GitLab, IDEA GitLab Solutions is here to provide expert consulting services and official licenses in the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the United Kingdom, and beyond. Our experienced team also supports clients remotely in Israel, South Africa, and Paraguay. Visit IDEA GitLab Solutions for professional guidance.

Google Cloud Integrations for Secure Cloud Run Deployments at GitLab

Wed, 15 Jan 2025 01:00:00 +0100

Enhancing Security and Efficiency with Google Cloud Run Integrations

GitLab continues its mission to streamline DevSecOps processes by introducing advanced integrations with Google Cloud Run. These integrations enable developers to build, deploy, and secure their applications seamlessly, leveraging the trusted power of GitLab.

Google Cloud Run provides a robust, fully managed platform for running containerized applications. With GitLab’s new integration, it’s simpler than ever to deploy code securely and verify the reliability of cloud-native applications.

What the Digital Operational Resilience Act Means for Banks

Wed, 15 Jan 2025 01:00:00 +0100

Understanding the Digital Operational Resilience Act for the Banking Sector

The Digital Operational Resilience Act (DORA) is set to transform how banks within the European Union ensure their IT systems and cybersecurity measures are robust, resilient, and aligned with EU regulations. With its enforcement beginning in early 2025, DORA aims to enhance the financial sector’s capacity to withstand and recover from operational disruptions while guaranteeing secure communication networks. This legislation is particularly critical for financial institutions navigating increasingly complex digital ecosystems.

Getting Started with GitLab: How to Manage Users

Tue, 14 Jan 2025 01:00:00 +0100

Streamline User Management with GitLab

Managing users in GitLab doesn’t have to be challenging. Whether you’re a system administrator or part of a smaller team, effective user management can significantly improve collaboration and productivity. GitLab offers a range of tools to make this process seamless and efficient.

Adding Users to Your Project

To add users, navigate to your project’s settings and access the Members section. Here, you can invite colleagues by entering their email addresses and selecting their roles, such as Guest, Reporter, or Maintainer. Assign specific permissions to ensure tasks are performed securely and effectively.

Deploy a Node.js Express App with GitLab's Cloud Run Integration

Mon, 13 Jan 2025 01:00:00 +0100

Deploy a Node.js Express App with GitLab’s Cloud Run Integration

If you’re a developer looking to simplify your deployment process, GitLab offers an integrated way to deploy Node.js applications to the cloud with its Google Cloud Run feature. Cloud Run allows you to execute your containerised applications on a fully managed environment, reducing the operational overhead. This tutorial focuses on deploying a Node.js Express app using GitLab’s straightforward CI/CD pipelines and Cloud Run integration.

GitLab's 2024 Bug Bounty Year in Review

Sun, 12 Jan 2025 16:16:19 +0000

GitLab’s 2024 Bug Bounty Year in Review

At GitLab, ensuring the security and reliability of our platform is a top priority. This commitment is underscored by our Bug Bounty Programme, an initiative that demonstrates our dedication to creating a secure environment for all users. As we reflect on 2024, we’re proud to share key highlights and milestones from the programme, showcasing the incredible contributions from the security research community worldwide.

The Ultimate Guide to CI/CD: From Fundamentals to Advanced Implementation

Sun, 12 Jan 2025 16:16:19 +0000

The Ultimate Guide to CI/CD: From Fundamentals to Advanced Implementation

Continuous Integration and Continuous Deployment/Delivery (CI/CD) are not just buzzwords—they are critical practices for modern software development teams aiming to improve software quality, streamline workflows, and accelerate development velocity. Whether you are starting your journey or deepening your implementation, this guide provides a comprehensive look at the essentials and advanced techniques for achieving CI/CD excellence.

Understanding the Foundations of CI/CD

First, let’s define the pillars of CI/CD:

Exciting Features in Git 2.48.0

Sun, 12 Jan 2025 16:16:18 +0000

Exciting Features in Git 2.48.0

The tech world is abuzz with the release of Git 2.48.0, bringing a host of new enhancements and fixes to streamline version control for developers everywhere. Whether you’re a novice or an experienced pro, this update offers something to elevate your experience.

Enhanced Performance for Large Repositories

One of the most notable improvements is the enhanced performance handling for large repositories. With optimised fetch and pull commands, teams working in sizable projects will now notice significant speed gains, making collaboration faster and more efficient.

GitLab 17.5.2 Patch Release Now Available

Sun, 12 Jan 2025 16:16:18 +0000

GitLab 17.5.2 Patch Release Now Available

GitLab has just announced the release of its latest update, version 17.5.2—a patch release containing critical fixes and updates for users. Staying up to date with these releases ensures optimal performance, security, and reliability for your GitLab environment.

Important Fixes Included in GitLab 17.5.2

This release addresses several key issues that improve system behaviour and user experience. These include corrections to bugs identified in earlier versions, ensuring smoother project workflows and compatibility with ongoing technological advancements. For a detailed breakdown of all fixes, consult the complete release notes on the GitLab 17.5.2 announcement page.

GitLab 17.6 Released: Transforming Collaboration

Sun, 12 Jan 2025 16:16:18 +0000

GitLab 17.6 Released: Transforming Collaboration

The latest version of GitLab, 17.6, has just been released, bringing an innovative suite of capabilities designed to optimise development workflows and enhance the collaborative experience for teams worldwide. At IDEA GitLab Solutions, your trusted GitLab Select Partner, we are excited to deliver these updates to our clients across the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, North Macedonia, the United Kingdom, and beyond.

Top Highlights of GitLab 17.6

This release is packed with new features and improvements tailored to empower engineering teams. Here are some key highlights:

GitLab 17.6.2 Patch Release: Improving Security and Stability

Sun, 12 Jan 2025 16:16:18 +0000

GitLab 17.6.2 Patch Release: Enhancing Stability and Security

We are pleased to announce the release of GitLab 17.6.2, the latest patch update focused on improving stability and security. This release addresses multiple regressions and important security-related fixes introduced in GitLab 17.6.1. Regular updates like these ensure GitLab remains robust and dependable for your development team.

Why Update to GitLab 17.6.2?

Patch releases play a vital role in maintaining a seamless and secure workflow. Version 17.6.2 tackles specific issues found in the previous iteration, ensuring a smoother experience for users and preventing potential vulnerabilities. As always, we encourage all users to upgrade to the latest release to take full advantage of these improvements.

GitLab 17.7 Released: New Features and Enhancements

Sun, 12 Jan 2025 16:16:18 +0000

GitLab 17.7 Released: New Features and Enhancements

Published by IDEA GitLab Solutions

GitLab has just announced the release of GitLab 17.7, introducing a range of exciting new features, enhancements, and fixes aimed at delivering an even better DevSecOps experience. As a GitLab Select Partner, IDEA GitLab Solutions is thrilled to bring you a summary of notable updates from this release. Let’s explore what’s new!

Key Highlights of GitLab 17.7

Improved Productivity: GitLab 17.7 introduces new automation tools, refined CI/CD capabilities, and better integration with security frameworks.
Enhanced Security Features: Strengthened code scanning tools and faster threat assessments to secure the development process at every stage.
User Experience: Sleeker UI/UX enhancements that reduce friction and make the platform even more intuitive for DevSecOps teams.

Extending Our Expertise

At IDEA GitLab Solutions, we specialise in delivering tailored consulting and licensing services for GitLab users across the Czech Republic, Slovakia, Croatia, Serbia, Slovenia, Macedonia, the United Kingdom, as well as for remote clients in Israel, Paraguay, and South Africa. Our dedicated team is here to help you unlock the full potential of GitLab for your team’s unique needs.

GitLab Announces the 17.6.1 Patch Release

Sun, 12 Jan 2025 16:16:18 +0000

Patch Release: GitLab 17.6.1 Now Available

We are excited to announce the launch of the GitLab 17.6.1 patch release. This update addresses critical fixes, improving platform reliability and enhancing security. Staying current with the latest releases ensures your projects continue to operate seamlessly and securely.

What’s New in GitLab 17.6.1?

This version includes patches that resolve issues found in the previous release, ensuring smooth performance for users. No new features are being introduced, as the focus here lies solely on improving stability and addressing bugs.

GitLab Supports Banks in Managing Regulatory Challenges

Sun, 12 Jan 2025 16:16:18 +0000

GitLab Supports Banks in Managing Regulatory Challenges

In the ever-evolving financial landscape, banks face increasing pressure due to tightening regulations and demands for enhanced transparency. GitLab, a single DevSecOps platform, is proving an invaluable partner for financial institutions seeking efficient solutions to manage these regulatory challenges while promoting innovation.

Complex compliance requirements often hinder agility and innovation in the banking sector. GitLab enables teams to unify development, security, and operations under one platform, creating a streamlined workflow that addresses regulatory standards without stifling creativity or growth. By embracing automation and integrated security in the software delivery lifecycle, banks can reduce manual errors while ensuring compliance with international frameworks such as GDPR, Basel III, and ISO/IEC 27001.

Patch Release: GitLab 17.7.1 Now Available

Sun, 12 Jan 2025 16:16:18 +0000

Patch Release: GitLab 17.7.1 Now Available

We are excited to announce the release of GitLab 17.7.1, now available for all GitLab users. This patch addresses important bug fixes and provides crucial performance improvements, ensuring a smoother experience for teams and organisations using GitLab across workflows.

The GitLab team remains committed to delivering timely updates to enhance stability and security. This release focuses on resolving several key issues reported since the 17.7 launch. We recommend all GitLab users to update to version 17.7.1 as soon as possible to benefit from these enhancements.

Reduce Supply Chain Risk with Smarter Vulnerability Prioritisation

Sun, 12 Jan 2025 16:16:18 +0000

Reduce Supply Chain Risk with Smarter Vulnerability Prioritisation

As organisations increasingly rely on complex software ecosystems, supply chain security has become a top priority in the world of DevSecOps. Addressing vulnerabilities effectively isn’t just about discovering them—it’s about determining which ones really matter and acting accordingly. GitLab has made strides in equipping teams with smarter tools for vulnerability prioritisation, enabling businesses to effectively mitigate risks in their software supply chains.

Streamline the Path to CMMC Level 2 Compliance with GitLab

Sun, 12 Jan 2025 16:16:18 +0000

Streamline the Path to CMMC Level 2 Compliance with GitLab

Navigating the complexities of Cybersecurity Maturity Model Certification (CMMC) Level 2 compliance just got easier! With GitLab’s all-in-one DevSecOps platform, businesses can address the stringent requirements of cybersecurity compliance while simplifying processes and maintaining productivity.

Understanding CMMC Level 2

CMMC Level 2 serves as a bridge between basic cybersecurity hygiene (Level 1) and the advanced security required by organisations managing Controlled Unclassified Information (CUI). Adhering to the National Institute of Standards and Technology’s (NIST) 800-171 framework, Level 2 demands organisations meet 110 security controls designed to safeguard sensitive data and protect operations from cybersecurity risks.

Mon, 01 Jan 0001 00:00:00 +0000

404

Mon, 01 Jan 0001 00:00:00 +0000

Frequently Asked Questions

Mon, 01 Jan 0001 00:00:00 +0000

IDEA GitLab Solutions: Licencing, Hosting, Consulting and Training Services

GitLab Weekly Digest: AI, Feature Flags & Optimisation for UK DevOps Teams

GitLab Weekly Digest: Insights for UK DevOps from AI to Agile Planning

GitLab this week: safer releases, clearer planning

What this GitLab update means for UK delivery teams

GitLab weekly digest: releases, AI and noise

GitLab weekly digest: what UK teams should know now

Security and patching are still the first job

GitLab Patch Release: 18.10.1, 18.9.3, 18.8.7 – Securing Your DevOps Pipeline

GitLab Patch Release: 18.10.1, 18.9.3, 18.8.7 – Critical Updates for UK Enterprises

Taming SAST False Positives for UK Compliance

From Alert Fatigue to Assured Security: Taming SAST False Positives

Agentic Code Reviews with Flat-Rate Pricing

Agentic Code Reviews with Flat-Rate Pricing

GitLab 18.10 Expands Agentic AI to More Teams

GitLab 18.10: Expanding Agentic AI Access

GitLab 18.10 Released: Enhancements for DevOps Excellence

GitLab 18.10 Released: A Leap Forward in DevOps Efficiency

GitLab 18.10: AI-Native Triage and Remediation

Introducing AI-Native Triage and Remediation with GitLab 18.10

GitLab 18.10: AI-Native Triage, Remediation & Free-Tier Credits for UK Teams

GitLab 18.10: Transforming Security and Accessibility for UK DevOps Teams with AI

Streamline Code Reviews with GitLab

Efficient Code Reviews with GitLab

Use GitLab's Virtual Registry for Secure Docker Deployment

Enhancing Security with GitLab’s Container Virtual Registry

GitLab 18.9.2 Patch Release

Patch Release: GitLab 18.9.2 Now Available

Automating Detection Gap Analysis with GitLab Duo Agent Platform

Enhancing Detection Capabilities with GitLab Duo and Agent Platform

Boost Your Repository Navigation with GitLab's File Tree Browser

Boost Your Repository Navigation with GitLab’s File Tree Browser

Comprehensive Guide to GitLab Container Scanning

Comprehensive Guide to GitLab Container Scanning

Connect Any Tool with MCP to Extend GitLab DUO and Agent Platform

Extend GitLab DUO and Agent Platform: Connect Any Tool with MCP

Crafting a Strong Security Control Framework with GitLab

Crafting a Strong Security Control Framework: The GitLab Approach

Maximising Software Delivery with AI Prompts

Maximising Software Delivery with AI Prompts

AI and the Governance of Risk Detection

AI’s Role in Vulnerability Detection

Human Governance Over AI

GitLab Duo: Revolutionary Development Efficiency with AI

GitLab Duo: A Leap in Development Efficiency

GitLab Introduces Managed Service Provider Partner Program

Exploring the GitLab Managed Service Provider Partner Program

Optimising Deployments: GitLab and Google Agent Engine

Enhanced Deployments with GitLab and Google Agent Engine

Enhance Your CI/CD Processes with New GitLab Features

Enhance Your CI/CD Processes with New GitLab Features

GitLab 18.9.1 Patch Release Announced

GitLab 18.9.1: Patch Release Overview

GitLab Introduces Passkeys for Passwordless Sign-in and 2FA

Embracing the Future of Security with Passkeys on GitLab

GitLab Extends GPG Key Validity for Package Repositories

Extended Validity of GPG Key for GitLab Package Repositories

GitLab Omnibus Package Key Expiry Extended

GitLab Omnibus Package Signing Key Expiry Extended to 2028

Advancements in Security with GitLab's Updated Dashboard

Enhancing Security Oversight with GitLab’s Updated Security Dashboard

Agentic AI: Enhancing Enterprise Control

Agentic AI: Enhancing Enterprise Control with Self-Hosted Solutions

The Duo-Agent Platform

GitLab 18.9 Released: Enhanced Collaboration and Security

Introducing GitLab 18.9 with Enhanced Collaboration and Security Features

GitLab Threat Intelligence: North Korean Cyber Tradecraft Unveiled

Unveiling North Korean Cyber Tradecraft

GitLab Backs 99.9% Availability with Service Credits for Ultimate Customers

Enhancing Service Assurance with 99.9% Availability Commitment

Claude Opus 4.6 Now Available in GitLab Duo Agent Platform

Claude Opus 4.6 Integration in GitLab Duo Agent Platform

DevSecOps-as-a-Service with GitLab on Oracle Cloud Infrastructure

Data Intensity Delivers Scalable DevSecOps-as-a-Service with GitLab and Oracle Cloud

GitLab 18.8.4 Patch Update Release

Patch Update: GitLab 18.8.4 Released

GitLab AI Gateway 18.8.1 Patch Release Unveiled

Introducing GitLab AI Gateway 18.8.1 Patch Release

GitLab 18.8.3 Security Release — Protect Your Instance with Latest Patch

GitLab 18.8.3 Security Update Now Available