News

CSO Online10h
Unpatched holes could allow takeover of GitLab accounts
CVE-2025-0673, a vulnerability that can cause a denial of service by triggering an infinite redirect loop, which would cause ...
As coding gets easier with AI, there will be more engineers, not fewer, says GitLab's CEO
Staples said that customers are testing coding assistants side-by-side, but he doesn't "have a lot of concern" about GitLab's ...
GitLab patches high severity account takeover, missing auth issues
GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones ...
Computer Weekly7d
How GitLab is tapping AI in DevSecOps
GitLab CISO Josh Lemos explains how the company is weaving AI, through its Duo tool, into the entire software development ...
GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab has since patched the issue.