Blog security

Browse articles that include the security tag

security - chainlink - cover
Enhance data security with custom PII detection rulesets This tutorial explains how GitLab's customizable Secret Detection rulesets strengthen data security by identifying PII patterns in code repositories. Learn how AI can help. Author: Fernando Diaz Read Post
Product security team - cover

Improving OAuth ROPC security on GitLab.com

GitLab.com is improving the security of OAuth Resource Owner Password Credentials (ROPC) by requiring client authentication, effective April 8, 2025.

Security Security 5 - cover

Self-service security alert handling with GitLab's UAM

The User Attestation Module automates security alerts by routing them directly to team members for verification, reducing manual SecOps work and enhancing audit trails.

Bulletin Board checkmark - cover - security

GitLab achieves PCI DSS Attestation of Compliance

Learn how our completion of the AoC as a Level 1 Service Provider, along with our broader security credentials, helps us support customers' compliance efforts.

Security security - chainlink - cover

Vulnerability risk prioritization made simple with GitLab

GitLab provides detailed vulnerability risk data to assess the potential impact of detected vulnerabilities. Learn how this enables teams to effectively prioritize remediation efforts.

Security security team - cover

How GitLab measures Red Team impact: The adoption rate metric

Follow our journey to develop and implement better metrics, including how we used GitLab to track our results end-to-end. Also find out the lessons learned along the way.

Security security shield - cover

Introducing GitLab’s Open Source Security Hub

Our open source repository of projects designed to enhance security operations and risk management will help developers adapt faster, respond smarter, and defend better — together.

AI/ML security cover - new

The GitLab AI Security Framework for security leaders

Discover how GitLab Duo's security controls, third-party integrations, and retention policies help teams safely implement AI into their development workflow.

Security Security 5 - cover

The ultimate guide to token management at GitLab

Learn all the steps in the end-to-end process of identifying, managing, and securing tokens for improved security across the software development lifecycle.

Security Security 5 - cover

Tutorial: Security scanning in air-gapped environments

Security scanning remains crucial even in air-gapped environments to detect internal threats, prevent data exfiltration, and maintain operational integrity. Learn how GitLab can help get air-gapped environments secure.

Ready to get started?

See what your team could do with a unified DevSecOps Platform.

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert