Business Insider

Anchore Vulnerability Scanning Tools Integrated with GitLab 14

SANTA BARBARA, Calif., Aug. 2, 2021 /PRNewswire/ -- Anchore today announced that its open source Grype vulnerability scanner tool is now available in GitLab 14's container scanning feature. Grype, ...
Ars Technica

Maximum-severity GitLab flaw allowing account hijacking under active exploitation

A maximum severity vulnerability that allows hackers to hijack GitLab accounts with no user interaction required is now under active exploitation, federal government ...
Bleeping Computer

GitLab ‘strongly recommends’ patching critical RCE vulnerability

GitLab is urging users to install a security update for branches 15.1, 15.2, and 15.3 of its community and enterprise editions to fix a critical vulnerability that could enable an attacker to perform ...
Threat Post

GitLab Patches Command Execution Vulnerability

Developers with GitLab fixed a critical vulnerability in the open source repository manager that could have allowed the theft of application files, tokens, or secrets. Developers with GitLab this week ...
TechCrunch

GitLab’s new security feature uses AI to explain vulnerabilities to developers

Developer platform GitLab today announced a new AI-driven security feature that uses a large language model to explain potential vulnerabilities to developers, with plans to expand this to ...
CSOonline

‘Dangerous’ vulnerability in GitLab Ultimate Enterprise Edition

A new vulnerability in GitLab’s Ultimate Enterprise Edition used for managing source code is “dangerous” and needs to be quickly patched, says an expert. The vulnerability, CVE-2025-5121, is one of 10 ...
TechRepublic

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’ Your email has been sent A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and ...