ニュース

Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline ...
heise online

Cloud Native: Reusable CI/CD pipelines with GitLab

In many organizations, software teams develop their own CI/CD pipelines to handle recurring tasks such as code checkout, testing, scanning, build and deployment. This individualized approach often ...
TechRadar

GitLab warns of critical security flaw which could allow hacker takeovers

GitLab has upgraded its Community and Enterprise editions to fix a critical vulnerability which allowed malicious actors to run pipeline jobs as any other platform user. In its patch release notes, ...