GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln The bug (CVE-2024-6385) is similar — but not identical — to a critical flaw GitLab patched just two weeks ago.

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.

To provide developers with reusable building blocks for test and build pipelines, GitLab offers two concepts: Job Templates and GitLab Components.

GitLab has upgraded its Community and Enterprise editions to fix a critical vulnerability which allowed malicious actors to run pipeline jobs as any other platform user.

Say goodbye to long-lived personal access tokens as you replace them with ephemeral, policy-driven credentials and automated service account management. The post Aembit Introduces GitLab Credential ...

GitLab Inc. ( NASDAQ: GTLB) Q2 2026 Earnings Call September 3, 2025 4:30 PM EDT Good day, everyone, and welcome to today's GitLab Second Quarter Fiscal Year 2026 Conference Call. It is now my pleasure ...

A critical GitLab vulnerability could allow an attacker to run a pipeline as another user. GitLab is a popular Git repository, second only to GitHub, with millions of active users. This week, it ...

Joel Krooswyk, federal chief technology officer at GitLab (Nasdaq: GTLB), said the rapid adoption of artificial intelligence has opened up the opportunity for developers to transition to AI ...